Offtopic
Bob Bomar
bulldog at fxp.org
Wed Apr 2 15:01:56 PST 2003
On Tue, Mar 18, 2003 at 01:20:27PM -0600, Fabio Miranda Hamburger wrote:
> Hi, I have a couple of question:
>
> 1. A technique for an intruder to keep a root account was creating a stuid
> root shell, that is not possible on FreeBSD nowadays, Why is not possible?
> How a program like sudo can do that? Foe example, If i am a sudo 'full
> admin' I can do this without passwd:
> %sudo su
> #
sudo executes the command as root, and since the systems sees su
being executed as root, you wont need that password.
--
/----------------------------------------------------------------\
| Bob Bomar bulldog at fxp.org http://www.bomar.us/~bob |
|================================================================|
| FreeBSD: The Power to Serve. http://www.freeBSD.org |
\----------------------------------------------------------------/
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 187 bytes
Desc: not available
Url : http://lists.freebsd.org/pipermail/freebsd-chat/attachments/20030402/fe224925/attachment.bin
More information about the freebsd-chat
mailing list