LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 08-23-2006, 02:20 AM   #1
bl0tt0
Member
 
Registered: Aug 2005
Location: The Glorious People's Republic of Austin
Posts: 178

Rep: Reputation: 62
sudo and xterm?


Ok, perhaps this is indicative of my level of experience with linux, but I just discovered that I was able to enter 'sudo xterm' on my system and get a root shell. This seems to me to be a rather large hole in the security on my system, as it means that a compromise of my user could also possibly give someone access to root. Is there any way to deny specific commands with visudo, or will I have to deny everything, and then start allowing the various commands I run through sudo? I know that the latter option will result in a much more robust security policy, but it seems like a big nuisance to configure sudoers like that when I am basically the only user on this computer. Opinions?

Thanks
 
Old 08-23-2006, 03:19 AM   #2
Nathanael
Member
 
Registered: May 2004
Location: Karlsruhe, Germany
Distribution: debian, gentoo, os x (darwin), ubuntu
Posts: 940

Rep: Reputation: 33
the sudoers file is quite simple
you specify the username, who is allowed to run sudo
you specify the username to which the user may sudo to (sudo -u <username>)
you specify the commands a user may invoke with sudo

if you google for sudoers the first entry will probably be what you are looking for in greater detail
 
Old 08-23-2006, 06:37 AM   #3
krock923
Member
 
Registered: Jul 2004
Posts: 171

Rep: Reputation: 30
Also, making yourself require a password for sudo can help if someone walks up when you forgot to log out.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
xterm - howto lauch an xterm into a specific directory jobano Linux - Software 11 01-30-2023 05:45 AM
Restricting Editing in Sudo (Advanced Sudo Question) LinuxGeek Linux - Software 4 11-04-2006 04:20 PM
About sudo satimis Fedora 4 05-22-2006 04:15 AM
how is black xterm background in IceWM when issue a xterm command? BRAHmS Linux - Software 1 02-14-2005 04:51 AM
sudo? nabil Linux - Security 1 02-12-2001 02:18 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 09:14 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration