Subject: Re: [ [Global InterSec 2002041701] Sudo Password Prompt Vulnerability.]
To: None <>
From: None <>
List: tech-security
Date: 04/26/2002 12:55:42
on Thu, Apr 25, 2002 at 05:46:31PM -0700, Jeremy C. Reed wrote:
> Sudo is useful.
> For example, sudoers configured for some users (on a home system) to run
> one command: /path/to/xcdroast.
> These users don't know any superuser password. The cd roaster is based on
> gtk that checks to make sure it isn't runing setuid.
> What are some safer and easier alternatives for this?

Would this work?

group add toasters
chmod 660 /dev/rcd0d
chgrp toasters /dev/rcd0d
sysctl -w vfs.generic.usermount=1
user mod -G toasters user1