Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Bugtraq> 1998_4

Bugtraq archives for 4th quarter (Oct-Dec) 1998: Re: 'sudo' recommendations

Re: 'sudo' recommendations

Cy Schubert (cschuberuumail.gov.bc.ca)
Wed, 18 Nov 1998 17:06:18 -0800

Messages sorted by: [ date ][ thread ][ subject ][ author ]
Next message: Jonathan A. Zdziarski: "Re: Sun Security Bulletin #00179"
Previous message: Henrik Nordstrom: "Re: KDE Screensaver vulnerability"
In reply to: Brian Martin: "'sudo' recommendations"
Next in thread: Alexey Kuzmichev: "Re: 'sudo' recommendations"

In message <Pine.LNX.3.96.981118164632.6555C-100000enigma.repsec.com>,
Brian M
artin writes:
> I'd like to thank Mr. Miller for maintaining the 'sudo' package, as well
> as having the foresight to address the potential security concerns as
> outlined above.

You can also issue sudo -k to delete the sudo ticket before running
something potentially dangerous.

The problem you discuss is also an issue with Kerberos.  Any potential
attacker could use cached Kerberos tickets to gain access to hosts,
services, or privileges.  To circumvent this, kdestroy your Kerberos
ticket or log in as a different user.

Regards,                       Phone:  (250)387-8437
Cy Schubert                      Fax:  (250)387-5766
Open Systems Group          Internet:  Cy.Schubertuumail.gov.bc.ca
ITSD                                   Cy.Schubertgems8.gov.bc.ca
Government of BC

Next message: Jonathan A. Zdziarski: "Re: Sun Security Bulletin #00179"
Previous message: Henrik Nordstrom: "Re: KDE Screensaver vulnerability"
In reply to: Brian Martin: "'sudo' recommendations"
Next in thread: Alexey Kuzmichev: "Re: 'sudo' recommendations"