Re: Sudo: local root compromise with krb5 enabled

看板Bugtraq作者Todd.時間18年前 (2007/06/09 11:05)推噓0(0推 0噓 0→)

留言0則, 0人參與討論串5/9 (看更多)

In message <70f230c70706071255k7338dc5bn85bb1ac5fe6c2fc7@mail.gmail.com> so spake "Mark Senior" (senatorfrog): > In other words, in the SuSE default config, sudo is just an > overcomplicated su - to sudo something as root, you need not your own > password, but root's - except you don't have to be in wheel to use it. > > If sudo is configured as above, and uses kerberos, then all users > might be able to exploit this. This bug does not affect builds of sudo that use PAM or BSD authentication for password verification so there is really no impact on SuSE. - todd

‣ 返回看板[ Bugtraq ] 臭蟲

‣ 更多 Todd. 的文章

文章代碼(AID): #16QXa100 (Bugtraq)

討論串 (同標題文章)

完整討論串 (本文為第 5 之 9 篇)：

排序：最新先 | 最舊先 | 留言數

Re: Sudo: local root compromise with krb5 enabled Re: Sudo: local root compromise with krb5 enabled

18年前, 07/24

Re: Sudo: local root compromise with krb5 enabled Re: Sudo: local root compromise with krb5 enabled

18年前, 06/16

Re: Sudo: local root compromise with krb5 enabled Re: Sudo: local root compromise with krb5 enabled

18年前, 06/15

Re: Sudo: local root compromise with krb5 enabled Re: Sudo: local root compromise with krb5 enabled

18年前, 06/12

Re: Sudo: local root compromise with krb5 enabled Re: Sudo: local root compromise with krb5 enabled

18年前, 06/09

Re: Sudo: local root compromise with krb5 enabled Re: Sudo: local root compromise with krb5 enabled

18年前, 06/09

Re: Sudo: local root compromise with krb5 enabled Re: Sudo: local root compromise with krb5 enabled

18年前, 06/09

Sudo: local root compromise with krb5 enabled Sudo: local root compromise with krb5 enabled

18年前, 06/09

Re: Sudo: local root compromise with krb5 enabled Re: Sudo: local root compromise with krb5 enabled

18年前, 06/09

在新視窗開啟完整討論串 (共9篇)

‣ 返回看板[ Bugtraq ] 臭蟲

‣ 更多 Todd. 的文章

文章代碼(AID): #16QXa100 (Bugtraq)