Re: Could sudo be an security issue?

To: lemuel typhair <ltyphair@perdido.mine.nu>
Cc: debian-security@lists.debian.org
Subject: Re: Could sudo be an security issue?
From: Halil Demirezen <halild@bilmuh.ege.edu.tr>
Date: Thu, 15 May 2003 03:28:08 +0300
Message-id: <20030515002808.GA25759@bilmuh.ege.edu.tr>
In-reply-to: <3EC2D7D1.1060100@perdido.mine.nu>
References: <Pine.LNX.4.53.0305150904530.14598@rave.its.vu.edu.au> <3EC2D7D1.1060100@perdido.mine.nu>

> going back to root means that you do not know who did what.  sudo gets 
> logged, so you know who did what.  that is way more important security 
> wise than not running sudo and having 5 people use root wih no logging.  
> the second hing is that if you did wan to limit people to certain 
> commands you can.  with out it you are forced to give them rot, and that 
> means unlimited power.

 Basing on workarounds where i make some people work on different issues, and 
there issues need root privileges, i should not give them all, the root access 
via password, etc.. For five people workaround, it means five root people. This
is of-course a big gap for security. sudo may be a solution, who did what can 
easily be checked via logs. This should not be a physical problem for an
administrator to check logs and keep the maintainance!

Attachment: pgpJw8y2VU0ht.pgp
Description: PGP signature

Reply to:

References:
- Could sudo be an security issue?
  - From: Stewart James <stewart.james@vu.edu.au>
- Re: Could sudo be an security issue?
  - From: lemuel typhair <ltyphair@perdido.mine.nu>

Prev by Date: Re: Could sudo be an security issue?
Next by Date: Re: Could sudo be an security issue?
Previous by thread: Re: Could sudo be an security issue?
Next by thread: Re: Could sudo be an security issue?
Index(es):
- Date
- Thread