著者: Marc Perkel 日付: To: exim users 題目: Re: [exim] sudo - iptables trick
John Hall wrote: > On 4/15/06, W B Hacker <wbh@???> wrote:
>
>
>>>> If I'm mail and I run sudo it asks for the root password. What do I need
>>>> to add to get around that?
>>>>
>>> See NOPASSWD in man sudoers.
>>>
>
>
>> ??
>>
>> Is that a good idea?
>>
>> I think I am beginning to see why some folks say Linux is no
>> more secure than Windows.....
>>
>
> It depends. Obviously if you have
>
> mail ALL=(root) NOPASSWD ALL
>
> then that's not a good idea, but if you restrict mail to running just
> some wrapper scripts that invoke iptables appropriately, then it is
> reasonably secure.
>
> cheers,
> john
> Thanks for your help. What would be a more restrictive example?