tech-security: re: [lists@globalintersec.com: [Global InterSec 2002041701] Sudo Password Prompt Vulnerability.]

Subject: re: [lists@globalintersec.com: [Global InterSec 2002041701] Sudo Password Prompt Vulnerability.]
To: Johan A. van Zanten <johan@ewranglers.com>
From: matthew green <mrg@eterna.com.au>
List: tech-security
Date: 04/27/2002 06:58:14

   
    (In the good old days, even just plain "su" read .cshrc so one could
    locate this alias there.  Now one can put it in ~root/.profile, but it
    will need to be "su -", or something more clever with ksu...)


(FYI, try "su -m" on modern BSD.)