[Wolves] sudoers file
Stuart Langridge
sil at kryogenix.org
Fri Jun 25 12:47:47 BST 2004
Old Dan said:
> I'm just bothered by the fact that the command 'sudo su' works.
>
> I just modified a file with user/group as root/root and permissions 440
> as my own username after doing that.
>
> Disturbing as it means the root password means squat diddly if someone
> finds out my user password, at least with the default settings.
You're supposed to use "sudo" to allow a given user to run *some* commands
as root, not all commands as root :-) If you allow them to run all
commands, then "sudo su" is pretty much irrelevant; any command that you
could run after "su", you could have also run with "sudo" in front of it.
Aq.
More information about the Wolves
mailing list