[Bug 12576] popt aliases allow users to bypass sudo argument restrictions
samba-bugs at samba.org
samba-bugs at samba.org
Sun Feb 19 22:00:25 UTC 2017
https://bugzilla.samba.org/show_bug.cgi?id=12576
Wayne Davison <wayned at samba.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |ASSIGNED
--- Comment #10 from Wayne Davison <wayned at samba.org> ---
One thing I was thinking is that the popt code could have a sanity check when
reading in user aliases from a different user when running as root. So, the
code would check that it was running as uid 0 and just ignore a $HOME-based
popt aliases file if the file wasn't also uid 0.
However, I do also like the idea of not using popt aliases for the --server
side (including --daemon) as that could also cause rsync some problems in how
things get setup between the 2 sides (in addition to being a potential security
issue).
--
You are receiving this mail because:
You are the QA Contact for the bug.
More information about the rsync
mailing list