More PATH fallout. Who decided this was a good idea?
Bill Nottingham
notting at redhat.com
Mon Dec 8 16:24:10 UTC 2008
Chris Adams (cmadams at hiwaay.net) said:
> Then later, Steve Grubb <sgrubb at redhat.com> said:
> > > So "cat >> /etc/shadow" is audited?
> >
> > Of course.
>
> So cat will have to be setuid root so it can audit? What about echo,
> bash, perl, etc.?
>
> This is absurd.
As stated earlier, that's done by auditing of the access to the
file itself.
Bill
More information about the fedora-devel-list
mailing list