[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: GNU su and the wheel group
From: |
Klaus von der Heyde |
Subject: |
Re: GNU su and the wheel group |
Date: |
Tue, 05 Oct 2004 17:49:12 +0200 |
User-agent: |
KNode/0.6.1 |
Martin Guy wrote:
> In general, su-ing from an insecure account to a secure one is a no-no
> since the insecure account can have its own program called "su" in
> $HOME/bin which turns character echo off, prints "Password: ",
A good reason not to put $HOME/bin anywhere except the last position
in $PATH... or not have it in $PATH at all.
Using su from an user account is often used on systems being
adminstrated over an ssh connection, when root login via ssh is
disabled. The security-aware sysadmin may call /bin/su (or whereever
the original su is) explicitly.
Klaus
- Re: GNU su and the wheel group, telford, 2004/10/04
- Re: GNU su and the wheel group, Paul Jarc, 2004/10/04
- Message not available
- Re: GNU su and the wheel group, Sam Holden, 2004/10/04
- Re: GNU su and the wheel group, telford, 2004/10/05
- Re: GNU su and the wheel group, Sam Holden, 2004/10/05
- Re: GNU su and the wheel group, David Kastrup, 2004/10/05
- Re: GNU su and the wheel group, Martin Guy, 2004/10/05
- Re: GNU su and the wheel group,
Klaus von der Heyde <=
- Re: GNU su and the wheel group, telford, 2004/10/05
- Re: GNU su and the wheel group, Stefan Monnier, 2004/10/06
- Re: GNU su and the wheel group, Tim Smith, 2004/10/05
- Re: GNU su and the wheel group, telford, 2004/10/05