From owner-freebsd-questions Wed Jul 17 20:20: 0 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.FreeBSD.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 088C537B400 for ; Wed, 17 Jul 2002 20:19:58 -0700 (PDT) Received: from mail.thundernet.cz (mail.thundernet.cz [62.77.87.114]) by mx1.FreeBSD.org (Postfix) with SMTP id 738DF43E3B for ; Wed, 17 Jul 2002 20:19:52 -0700 (PDT) (envelope-from neuhauser@bellavista.cz) Received: (qmail 29945 invoked from network); 18 Jul 2002 03:19:45 -0000 Received: from unknown (HELO freepuppy.bellavista.cz) (62.168.44.50) by mail.thundernet.cz with SMTP; 18 Jul 2002 03:19:45 -0000 Received: by freepuppy.bellavista.cz (Postfix, from userid 1001) id 122F423F; Thu, 18 Jul 2002 05:19:45 +0200 (CEST) Date: Thu, 18 Jul 2002 05:19:45 +0200 From: Roman Neuhauser To: Tom Limoncelli Cc: freebsd-questions@FreeBSD.ORG Subject: Re: su to root Message-ID: <20020718031945.GP21153@freepuppy.bellavista.cz> Mail-Followup-To: Tom Limoncelli , freebsd-questions@FreeBSD.ORG References: <3D386AED1B47D411A94300508B11F18703BC5BBE@fmsmsx116.fm.intel.com> <3D35BFB9.FFEAFF17@lumeta.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <3D35BFB9.FFEAFF17@lumeta.com> User-Agent: Mutt/1.5.1i Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG > Date: Wed, 17 Jul 2002 15:04:25 -0400 > From: Tom Limoncelli > To: freebsd-questions@FreeBSD.ORG > Subject: Re: su to root > > "Balaji, Pavan" wrote: > > > I wonder what exactly this means. I don't remember seeing any option for > > creating/not-creating the wheel group while installation. > > It means "Install 'sudo' so that you get tighter control over who can do > what, and much better logging." > > :-) > > I've known about sudo for ages but only started using it. After learning > the configuration syntax, I've found it a great little utility. There are > now many cases where I used to hand out root access but now I only have to > give sudo access to a particular command. (Disclaimer: you shouldn't give > sudo access to any command that you haven't personally audited or you may > be giving the person full root access without knowing it.) so you audited sudo, and found its source ok? http://www.google.com/search?hl=en&q=sudo+security+vulnerability -- FreeBSD 4.6-STABLE 5:16AM up 1 day, 15:35, 7 users, load averages: 0.00, 0.00, 0.00 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message