Posted by: Anonymous
[ip: 83.105.112.179]
on February 10, 2008 12:18 PM
The way most sudo setups are run can actually make things less secure. A user who can do 'sudo su', or 'sudo bash' is effectively root equivalent immediately, as is anyone who has sudo on chmod and chown, in addition to less and many other things. This means that compromise of root rights simply needs an attacker to crack a user password - privilege elevation via an exploit becomes unnecessary. Having sudo set up can be useful for logging, but it's difficult to delegate enough rights via sudo to allow someone to perform any degree of sysadmin without giving them root. It is not a panacea for security, and its implementation by default in distros where 'sudo su -' is the way to get root is not adding to security, it's actually siginificantly less secure than having a string root password.
Learn about Linux
Download Linux
Get Linux help
sudo, or not sudo: that is the question
Posted by: Anonymous [ip: 83.105.112.179] on February 10, 2008 12:18 PM#