Re: [exim] sudo - iptables trick

Page principale
Supprimer ce message
Répondre à ce message
Auteur: Marc Perkel
Date:  
À: exim users
Sujet: Re: [exim] sudo - iptables trick


John Hall wrote:
> On 4/15/06, W B Hacker <wbh@???> wrote:
>
>
>>>> If I'm mail and I run sudo it asks for the root password. What do I need
>>>> to add to get around that?
>>>>
>>> See NOPASSWD in man sudoers.
>>>
>
>
>> ??
>>
>> Is that a good idea?
>>
>> I think I am beginning to see why some folks say Linux is no
>> more secure than Windows.....
>>
>
> It depends. Obviously if you have
>
> mail ALL=(root) NOPASSWD ALL
>
> then that's not a good idea, but if you restrict mail to running just
> some wrapper scripts that invoke iptables appropriately, then it is
> reasonably secure.
>
> cheers,
> john
>

Thanks for your help. What would be a more restrictive example?