SLUG Mailing List Archives - Re: [SLUG] Lindows experience.

To: slug@xxxxxxxxxxx
Subject: Re: [SLUG] Lindows experience.
From: Sridhar Dhanapalan <sridhar@xxxxxxxxxxxxxx>
Date: Sun, 21 Aug 2005 00:29:15 +1000
User-agent: KMail/1.8.2

On Wed, 17 Aug 2005 11:56, Jeff Waugh <jdub@xxxxxxxxxxxxxx> wrote:
> <quote who="Sridhar Dhanapalan">
> > Also, are there any security implications of this? Doesn't it mean that
> > in a default setup, any local user can gain root access? Please correct
> > me if I'm wrong.
>
> Absolutely not. Have a look at /etc/sudoers to see the configuration. In
> warty, it gave full sudo access to the initial user created. In hoary, it
> gives full sudo access to members of the admin group (which the initial
> user is a member of).

Is it a good idea to give *full* sudo access to the initial user by default? 
This sounds like a security problem to me.

-- 
Sridhar Dhanapalan  [Yama | http://www.pclinuxonline.com/]
  {GnuPG/OpenPGP: http://dhanapalan.webhop.net/yama.asc
   0x049D38B4 : A7A9 8A02 78CB AB1B FCE4 EEC6 2DD9 249B 049D 38B4}

"You have no idea the evil we do on a regular basis. ... The worst type of 
criminals don't carry a gun, they take your money legally."
		-- Anonymous MCI Worldcom employee, June 2002

Follow-Ups:
- Re: [SLUG] Lindows experience.
  - From: Terry Collins
- Re: [SLUG] Lindows experience.
  - From: Jeff Waugh

References:
- Re: [SLUG] Lindows experience.
  - From: Steven Tucker
- Re: [SLUG] Lindows experience.
  - From: Sridhar Dhanapalan
- Re: [SLUG] Lindows experience.
  - From: Jeff Waugh

Messages sorted by: [ date | thread ]
Prev by Date: [SLUG] Re: RedHat at UOW
Next by Date: Re: [SLUG] Lindows experience.
Previous by thread: Re: [SLUG] sudo vs su [WAS: Re: Lindows experience]
Next by thread: Re: [SLUG] Lindows experience.