Subject: Re: "su" in r escue?
To: Luke Mewburn <lukem@NetBSD.org>
From: Andrew Brown <email@example.com>
Date: 06/25/2004 08:54:32
On Thu, Jun 24, 2004 at 11:12:30AM +1000, Luke Mewburn wrote:
>There will be security concerns in the future if we provided a
>statically linked (and possibly less functional) /rescue/su once
>/usr/bin/su supports dynamically linked PAM modules, since users
>could avoid the PAM policies for /usr/bin/su by running /rescue/su.
not to mention the fact that su is suid root and the rest of /rescue
|-----< "CODE WARRIOR" >-----|
firstname.lastname@example.org * "ah! i see you have the internet
email@example.com (Andrew Brown) that goes *ping*!"
firstname.lastname@example.org * "information is power -- share the wealth."