On Wed, Jul 01, 2009 at 04:59:36PM -0600, Warren Young wrote: > Frank Cox wrote: > > Gary Greene wrote: > > > >> . With sudo, > >> you get a record of what command was executed with superuser rights by whom > >> at whenever given hour. > > > > sudo bash > > If that's a problem for you, don't let people run bash via sudo. > There's an entire body of articles and such on which processes to > restrict because they can give you a sub-shell. Configuring sudo properly is a bit of a science; for example you don't allow "sudo less" because inside less you can shell out. Oops. It's amazing how many commands actually allow shell escapes. What you should do is only allow a minimal set of commands. -- rgds Stephen _______________________________________________ CentOS mailing list CentOS@xxxxxxxxxx http://lists.centos.org/mailman/listinfo/centos
Re: server is always getting hacked
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
- To: CentOS mailing list <centos@xxxxxxxxxx>
- Subject: Re: server is always getting hacked
- From: Stephen Harris <lists@xxxxxxxxxx>
- Date: Wed, 1 Jul 2009 19:52:30 -0400
- Delivered-to: centos@xxxxxxxxxx
- In-reply-to: <4A4BEA58.9090202@xxxxxxxxxxx>
- References: <4A4BD955.3050905@xxxxxxxxxxx> <C6712BD6.10842%ggreene@xxxxxxxxxxxxxxxxxxx> <20090701160808.0c145427.theatre@xxxxxxxxxxx> <4A4BEA58.9090202@xxxxxxxxxxx>
- User-agent: Mutt/1.4.2.2i
- References:
- Re: server is always getting hacked
- From: Warren Young
- Re: server is always getting hacked
- From: Gary Greene
- Re: server is always getting hacked
- From: Frank Cox
- Re: server is always getting hacked
- From: Warren Young
- Re: server is always getting hacked
- Prev by Date: Re: server is always getting hacked
- Next by Date: Re: Multiple Internet facing Nics - Gateway issue
- Previous by thread: Re: server is always getting hacked
- Next by thread: Re: server is always getting hacked
- Index(es):
 |