F22 System Wide Change: Set sshd(8) PermitRootLogin=no
Adam Williamson
adamwill at fedoraproject.org
Sat Jan 17 00:57:41 UTC 2015
On Fri, 2015-01-16 at 15:39 +0100, Lubomir Rintel wrote:
>
> There's a chance of a successful exploitation that would result in
> obtaining my privileges. Sure, gaining access to my account is bad
> enough, but if I run "su" or "sudo", they have root!
Along these lines, someone pointed out a rather nasty attack vector
via sudo the other day:
http://blog.grdryn.me/blog/fedora/prank-alias-sudo-in-bash.html
so...you'd better remember to call it with \ every time...:)
--
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Twitter: AdamW_Fedora | XMPP: adamw AT happyassassin . net
http://www.happyassassin.net
More information about the devel
mailing list