[plug] Interesting command that may make root access more fun ..

Joshua Chase joshych at yahoo.com.au
Sun May 27 20:20:05 WST 2007


This trick didn't work for me with Debian 40r0(etch).

Kev <kdownes at tpg.com.au> wrote: Gavin Chester wrote:
> 
> You guys were freaking me out with news of this MASSIVE security
> hole :-( Convenience, be damned! i don't want anybody having that level
> of privileged access other than 'root'. So, I had to test both methods
> and was able to breath easy:
> 
> gavin at linux:~> sudo su -
> root's password:
> Sorry, try again.
> root's password:
> Sorry, try again.
> root's password:
> sudo: 2 incorrect password attempts
> gavin at linux:~> sudo -i
> root's password:
> Sorry, try again.
> 
> This a default install of suse10.1, so bless 'em for looking after
> ignorant users like me ;-) Is it just unsafe with debian-based
> distros, I wonder ;-)

Xansros is a Debian distro which gives the exact same response as 
Gavin's SuSE.

Cheers
-- 
=======================================================================
Kev Downes
kdownes at tpg.com.au  ph 0404 7 0808 2
We use and recommend Xandros 4.1
=======================================================================
There are 10 types of people ...
    ... those who understand binary, and those who don't!
=======================================================================
"Jesus Christ is the centre of everything and the object of everything;
He who does not know him, knows nothing of the order of the world
and nothing of himself."             Blaise Pascal
=======================================================================
_______________________________________________
PLUG discussion list: plug at plug.org.au
http://www.plug.org.au/mailman/listinfo/plug
Committee e-mail: committee at plug.linux.org.au


       
---------------------------------
How would you spend $50,000 to create a more sustainable environment in Australia?  Go to Yahoo!7 Answers and share your idea.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.plug.org.au/pipermail/plug/attachments/20070527/6f59785c/attachment.html>


More information about the plug mailing list