[UFO Chicago] sudo exploit
Nate Riffe
inkblot@movealong.dhs.org
Wed, 18 Jul 2001 15:45:52 -0500 (CDT)
On Wed, 18 Jul 2001, Nick Moffitt wrote:
> begin Nate Riffe quotation:
> > Hey all you sudo addicts out there...
> >
> > http://linux.oreillynet.com/pub/a/linux/2001/07/16/insecurities.html
> >
> > This is why I prefer an actual root shell over a setuid binary.
>
> So you remove the setuid bit from /bin/su as well?
No. I try to keep as few as possible installed. sudo is one less.
>
> It looks like this is specifically a configuration issue
> involving the admin group.
>
>