Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the '10.6: Enable root user on Snow Leopard' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
10.6: Enable root user on Snow Leopard
Authored by: chiggsy on Jul 15, '11 11:18:57PM

When you sudo to a root shell, your $LOGNAME will show where you came from.

/var/root is there, it's the home of the root user. This fear is unworthy.

Set your sudoers file properly:

Defaults tty_tickets

added to the Defaults section will ensure that sudo only works for the tty you sudo from.

Otherwise an intruder would only have to watch the log files, wait until you went sudo, and then sudo bash and they have a root shell too.



[ Reply to This | # ]