From: Grant Taylor <gtaylor@gentoo.tnetconsulting.net>
To: gentoo-user@lists.gentoo.org
Subject: Re: [gentoo-user] Update to /etc/sudoers disables wheel users!!!
Date: Wed, 26 Oct 2022 17:06:51 -0600 [thread overview]
Message-ID: <45b54eef-a818-2fb8-321a-8526c12c346d@spamtrap.tnetconsulting.net> (raw)
In-Reply-To: <VI1PR10MB2445FF25A90350EF7E0987AFEF309@VI1PR10MB2445.EURPRD10.PROD.OUTLOOK.COM>
On 10/26/22 3:48 PM, Ramon Fischer wrote:
> I have created an issue at their Git repository. Maybe there will be
> solution for this:
>
> https://github.com/sudo-project/sudo/issues/190
I ... don't know where to begin.
There are so many ways that you can hurt yourself with syntactically
valid sudoers that it's not even funny.
You could allow list almost all commands, without using the special ALL
place holder and then remark critical commands and end up in a very
similar situation.
At some point we have to trust that Systems Administrators / Sudoers
editors know what they are doing and let them do so.
--
Grant. . . .
unix || die
next prev parent reply other threads:[~2022-10-26 23:07 UTC|newest]
Thread overview: 47+ messages / expand[flat|nested] mbox.gz Atom feed top
2022-10-26 2:34 [gentoo-user] Update to /etc/sudoers disables wheel users!!! Walter Dnes
2022-10-26 3:04 ` Ramon Fischer
2022-10-26 3:15 ` Grant Taylor
2022-10-26 3:34 ` Ramon Fischer
2022-10-26 3:40 ` Ramon Fischer
2022-10-26 3:44 ` Matt Connell
2022-10-26 16:21 ` Grant Taylor
2022-10-26 17:15 ` Neil Bothwick
2022-10-26 17:31 ` Rich Freeman
2022-10-26 20:17 ` Dale
2022-10-26 21:26 ` [gentoo-user] " Grant Edwards
2022-10-26 22:44 ` Dale
2022-10-27 1:23 ` Ramon Fischer
2022-10-27 3:01 ` Dale
2022-10-27 7:55 ` Ramon Fischer
2022-10-27 7:59 ` Ramon Fischer
2022-10-26 23:55 ` Rich Freeman
2022-10-26 6:31 ` [gentoo-user] " Walter Dnes
2022-10-26 7:42 ` Ramon Fischer
2022-10-26 11:31 ` Rich Freeman
2022-10-26 14:41 ` Ramon Fischer
2022-10-26 16:52 ` Grant Taylor
2022-10-26 17:12 ` [gentoo-user] " Grant Edwards
2022-10-26 17:54 ` Ramon Fischer
2022-10-26 18:04 ` [gentoo-user] " Ramon Fischer
2022-10-26 18:22 ` Neil Bothwick
2022-10-26 19:28 ` Grant Taylor
2022-10-26 20:08 ` Neil Bothwick
2022-10-26 20:17 ` Grant Taylor
2022-10-26 21:13 ` Neil Bothwick
2022-10-26 21:29 ` Grant Taylor
2022-10-26 21:48 ` Ramon Fischer
2022-10-26 23:06 ` Grant Taylor [this message]
2022-10-27 1:27 ` Ramon Fischer
2022-10-27 1:47 ` Grant Taylor
2022-10-27 7:53 ` Ramon Fischer
2022-10-26 18:35 ` Jack
2022-10-26 18:38 ` Ramon Fischer
2022-10-26 20:06 ` Neil Bothwick
2022-10-26 21:27 ` Ramon Fischer
2022-10-26 21:30 ` Grant Taylor
2022-10-26 19:31 ` Grant Taylor
2022-10-26 19:26 ` Grant Taylor
2022-10-26 18:04 ` Ramon Fischer
2022-10-26 16:38 ` Grant Taylor
2022-10-26 3:12 ` Matt Connell
2022-10-26 4:00 ` Anna “CyberTailor”
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=45b54eef-a818-2fb8-321a-8526c12c346d@spamtrap.tnetconsulting.net \
--to=gtaylor@gentoo.tnetconsulting.net \
--cc=gentoo-user@lists.gentoo.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox