How do I make sudo "trusted"?
Aleksey Nogin
aleksey at nogin.org
Thu Mar 11 15:19:55 UTC 2004
Contrast the following two:
% su -c id
Password:
uid=0(root) gid=0(root)
groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
context=root:sysadm_r:sysadm_t
% sudo id
Password:
uid=0(root) gid=0(root)
groups=0(root),1(bin),2(daemon),3(sys),4(adm),6(disk),10(wheel)
context=user_u:user_r:user_t
How do I change my local policy so have sudo grant the same sysadm
permissions as su does? Is it possible to make it tunable? Or is this
something that is very dangerous and should not be done? Thanks!
--
Aleksey Nogin
Home Page: http://nogin.org/
E-Mail: nogin at cs.caltech.edu (office), aleksey at nogin.org (personal)
Office: Jorgensen 70, tel: (626) 395-2907
More information about the selinux
mailing list