Zsh Mailing List Archive Messages sorted by: Reverse Date, Date, Thread, Author

Re: Zsh configuration files

X-seq: zsh-users 13495
From: "Richard Hartmann" <richih.mailinglist@xxxxxxxxx>
To: "Matt Wozniski" <godlygeek@xxxxxxxxx>
Subject: Re: Zsh configuration files
Date: Wed, 26 Nov 2008 02:50:13 +0100
Cc: zsh-users@xxxxxxxxxx
Dkim-signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:received:received:message-id:date:from:to :subject:cc:in-reply-to:mime-version:content-type :content-transfer-encoding:content-disposition:references; bh=o5471MiaXPlHEKtwfXAQn3uTDvTXJGfsS2RBgCUwfiI=; b=Ht2/uJt4wPdq7PnZvk3i7IQT8PNR4NqBnc+0DMJY6krwOoyUdll37ImhFl/i0N+hCw anCZCj/u5PZ4BVB5pPCv8SuPOgO6jlWMVF2FPWXuBJCkmYrVJzQl9GqVpT8IwQOH4aeP VmO378qjTQuOxZu/3/rJxsrg9dUrX5j7s2+ng=
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=message-id:date:from:to:subject:cc:in-reply-to:mime-version :content-type:content-transfer-encoding:content-disposition :references; b=e3g/MSGhj16aQKg8W3HXYJrvQSuQ/We2gsm1siwj9b4Kdsa8xB2h18kUdTAK2EalZ6 zzZn69LJl5Xb+wMkxIU1WLHWmsfZYeZ4vJBHPM0NICWjZryd0CdljJRD7xAPTD7j50dK uhyaQ/i+ZNU7IsNX0vkXZPX3y/MVHwyCBzQRo=
In-reply-to: <17393e3e0811251057m73734ddds78b5f19229fbbae8@xxxxxxxxxxxxxx>
Mailing-list: contact zsh-users-help@xxxxxxxxxx; run by ezmlm
References: <ggbjfl$der$1@xxxxxxxxxxxxx> <2d460de70811230730v1a79f3b3rd73a020f99b66f02@xxxxxxxxxxxxxx> <ggcv5t$a88$1@xxxxxxxxxxxxx> <alpine.LNX.2.00.0811241643240.20698@xxxxxxxxxxxxxxx> <b2e43f8f0811250910l7828242bnf3c8e137756b2f16@xxxxxxxxxxxxxx> <20081125183230.33d860d4@news01> <17393e3e0811251057m73734ddds78b5f19229fbbae8@xxxxxxxxxxxxxx>

On Tue, Nov 25, 2008 at 19:57, Matt Wozniski <godlygeek@xxxxxxxxx> wrote:

> And there's no loss of security from allowing users to
> change to the root account with their own password

Of course there is: You only need to crack/steal/sniff
one password.instead of two.
Also, with a root shell, you know that you need to
secure it. That might not be the case for sudo with
magic cookie.

Basically, sudo was never intended to be run with
ALL=(ALL) ALL for every single user on the system.

Richard

References:
- Zsh configuration files
  - From: Maurício
- Re: Zsh configuration files
  - From: Richard Hartmann
- Re: Zsh configuration files
  - From: Maurício
- Re: Zsh configuration files
  - From: Benjamin R. Haskell
- Re: Zsh configuration files
  - From: Allan Caffee
- Re: Zsh configuration files
  - From: Peter Stephenson
- Re: Zsh configuration files
  - From: Matt Wozniski

Messages sorted by: Reverse Date, Date, Thread, Author