Subject: Re: "su" in r escue?
To: None <tech-userlevel@NetBSD.org>
From: Ignatios Souvatzis <firstname.lastname@example.org>
Date: 06/25/2004 15:01:22
Content-Type: text/plain; charset=us-ascii
On Fri, Jun 25, 2004 at 08:54:32AM -0400, Andrew Brown wrote:
> On Thu, Jun 24, 2004 at 11:12:30AM +1000, Luke Mewburn wrote:
> >There will be security concerns in the future if we provided a
> >statically linked (and possibly less functional) /rescue/su once
> >/usr/bin/su supports dynamically linked PAM modules, since users
> >could avoid the PAM policies for /usr/bin/su by running /rescue/su.
> not to mention the fact that su is suid root and the rest of /rescue
I think some of the problems would be avoided by providing a statically=20
linked /rescue/suroot that can only be used to gain root access ... whatever
you would get by booting into single user mode.
If even this isn't desirable at a site (only allow non-PAM root access if
disconnected from network), /rescue/suroot can be erased.
seal your e-mail: http://www.gnupg.org/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (NetBSD)
-----END PGP SIGNATURE-----