Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security Security-Basics
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: SUDO vs root account question

from [Teresa Hasheminejad] Network Security [Permanent Link]
Subject: Re: SUDO vs root account question
Date: Wed, 23 Mar 2005 16:32:38 -0800 
Is there an advantage to using sudo over suauth? I hadnt considered
this particular scenario, but I think I will from now on...


On Wed, 23 Mar 2005 14:26:26 -0500, Vladamir
<wireless.insecurity@gmail.com> wrote:

Yes, if the user has full root access and is compromised, the attacker
will have full root access (the system doesn't know the difference
between people unless you're using BioMetrics :) )

As for allowing a time limit..
IIRC the way to do it is:

timestamp_timeout= <timeout limit>

Tahis Vera wrote:

Hi all,
I have two quick questions related to the 'sudo' command;
putting a certain user Mr.X with ALL=(ALL)ALL permissions in the
sudoers file, gives him COMPLETE root previleges? In other words, if I
want that some people, for security reasons, stop using the root
account/password for accessing the servers, by crating a sudo user
with ALL previledges will decrease this risk? If this sudo account  is
compromised, will the cracker have COMPLETE root previleges?



The other questions is how to set the time (in sudoers file) for the
user to work with sudo, without having to write the password (let's
say that I want to work for 20 minutes without having to write the
password again)

regards

Tahis
[More with this subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: SUDO vs root account question, Blaine Lefler
Next by Date:  Re: Wireless Keyboard Security, Glen Becker
Previous by Thread:  Re: SUDO vs root account question, Vladamir
Next by Thread:  Re: SUDO vs root account question, Blaine Lefler
Indexes:  [Date] [Thread] [Top] [All Lists]