Re: [exim] sudo - iptables trick

Top Page
Delete this message
Reply to this message
Author: John Hall
Date:  
To: W B Hacker
CC: exim users
Subject: Re: [exim] sudo - iptables trick
On 4/15/06, W B Hacker <wbh@???> wrote:

> >>If I'm mail and I run sudo it asks for the root password. What do I need
> >>to add to get around that?
> >
> >
> > See NOPASSWD in man sudoers.


> ??
>
> Is that a good idea?
>
> I think I am beginning to see why some folks say Linux is no
> more secure than Windows.....


It depends. Obviously if you have

mail ALL=(root) NOPASSWD ALL

then that's not a good idea, but if you restrict mail to running just
some wrapper scripts that invoke iptables appropriately, then it is
reasonably secure.

cheers,
john