[Pkg-utopia-maintainers] Bug#869922: (no subject)
Martin Dosch
spam-debian at mdosch.de
Thu Jul 27 20:46:39 UTC 2017
Dear all,
> Members of this group may run any command as any user when using sudo or
> pkexec (from the policykit-1 package, independently of whether the sudo
> package is installed).
I think you are wrong. This is what happens on my buster:
martin at schlepptop ~ sudo whoami
[sudo] password for martin:
Sorry, user martin is not allowed to execute '/usr/bin/whoami' as root
on schlepptop.
✘ martin at schlepptop ~ pkexec whoami
root
martin at schlepptop ~
Because I use my user for my personal stuff and root for administration.
I installed sudo and configured it properly in /etc/sudoers because I
wanted to allow only a single command with root privileges for my user
which worked well with sudo. Just today I realized that there is a
command pkexec which bypasses my /etc/sudoers which I consider a
security breach.
Best regards,
Martin
More information about the Pkg-utopia-maintainers
mailing list