Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


... | 21 comments | Create New Account
Click here to return to the '...' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
...
Authored by: Elektron on Dec 14, '02 06:20:24AM

Windows security idea: The user is the "admin".
Unix security idea: The program has root.

Because really, you don't do anything. You rely on a bunch of programs that do things, and hope that none of them is a trojan.

And then, say, one of those small apps you downloaded from VersionTracker (or whatever) realizes it doesn't need a password to sudo. So?

execl("/usr/bin/sudo","sudo","rm","-Rf","/");

(I'll assume everyone here is smart enough not to do that)

If you want root without typing lots of passes, su. Or you can sudo tcsh. But never give every other program you run the ability to do anything, too.

On another note, my Apps folder is 'chmod 1775'ed and the apps themselves are 'chmod -R 755'ed and 'chown -R root'ed. So I can add apps to the folder, but I can't edit the apps. Any new apps are chmod'd and chown'd. I'd copy them as root in the first place, if cp did resource forks and stuff correctly.

But then again, I'm paranoid =-)



[ Reply to This | # ]
...
Authored by: chabig on Dec 14, '02 10:42:06AM

My Applications folder is read-only for all user accounts. Yet they can still run apps. So you might be able to chmod 744 your apps if you're really paranoid.

Chris



[ Reply to This | # ]