sudo env_reset in FC5
Karel Zak
kzak at redhat.com
Tue Feb 7 09:22:31 UTC 2006
Hi,
I'd like to enable the env_reset option in the sudoers config file by
default in FC5:
Defaults env_reset
Defaults env_keep = "COLORS DISPLAY EDITOR HOSTNAME HISTSIZE INPUTRC KDEDIR \
LESSOPEN LS_COLORS MAIL PS1 PS2 QTDIR SSH_ASKPASS USERNAME \
LANG LC_ADDRESS LC_CTYPE LC_COLLATE LC_IDENTIFICATION \
LC_MEASUREMENT LC_MESSAGES LC_MONETARY LC_NAME LC_NUMERIC \
LC_PAPER LC_TELEPHONE LC_TIME LC_ALL LANGUAGE LINGUAS \
_XKB_CHARSET"
Why? The reason is CVE-2005-4158, CVE-2006-0151 and probably a lot of
same bugs in future.
Comments & suggestion?
Karel
--
Karel Zak <kzak at redhat.com>
More information about the devel
mailing list