oss-sec mailing list archives
Re: Are `su user' and/or `sudo -u user sh' considered dangerous?
From: Georgi Guninski <guninski () guninski com>
Date: Fri, 15 Jun 2018 16:08:07 +0300
On Thu, Jun 14, 2018 at 08:12:59PM +0200, Jakub Wilk wrote:
Until su is fixed to allocate new pty, I recommend running it under a standalone terminal emulator, such as screen or tmux. This has also an advantage that it's possible to tell that the invoked program actually terminated, instead of just pretending to terminate and faking root shell UI.
Looks like util-linux currently supports pty's: http://man7.org/linux/man-pages/man1/su.1.html -P, --pty Create pseudo-terminal for the session. ... This feature is EXPERIMENTAL for now and may be removed in the next releases.
Current thread:
- Are `su user' and/or `sudo -u user sh' considered dangerous? Georgi Guninski (Jun 12)
- Re: Are `su user' and/or `sudo -u user sh' considered dangerous? Jakub Wilk (Jun 12)
- Re: Are `su user' and/or `sudo -u user sh' considered dangerous? Jordan Glover (Jun 12)
- Re: Are `su user' and/or `sudo -u user sh' considered dangerous? Todd C. Miller (Jun 12)
- Re: Are `su user' and/or `sudo -u user sh' considered dangerous? Georgi Guninski (Jun 13)
- Re: Are `su user' and/or `sudo -u user sh' considered dangerous? Georgi Guninski (Jun 13)
- Re: Are `su user' and/or `sudo -u user sh' considered dangerous? Jakub Wilk (Jun 14)
- Re: Are `su user' and/or `sudo -u user sh' considered dangerous? Georgi Guninski (Jun 15)
- Re: Are `su user' and/or `sudo -u user sh' considered dangerous? Jordan Glover (Jun 12)
- Re: Are `su user' and/or `sudo -u user sh' considered dangerous? Jakub Wilk (Jun 12)