著者: John Hall 日付: To: W B Hacker CC: exim users 題目: Re: [exim] sudo - iptables trick
On 4/15/06, W B Hacker <wbh@???> wrote:
> >>If I'm mail and I run sudo it asks for the root password. What do I need
> >>to add to get around that?
> >
> >
> > See NOPASSWD in man sudoers. > ??
>
> Is that a good idea?
>
> I think I am beginning to see why some folks say Linux is no
> more secure than Windows.....
It depends. Obviously if you have
mail ALL=(root) NOPASSWD ALL
then that's not a good idea, but if you restrict mail to running just
some wrapper scripts that invoke iptables appropriately, then it is
reasonably secure.