On Mon, Oct 20, 2003 at 01:52:07PM -0700, Kip Macy wrote: > Please note that there are *SEVERE* security issues with this module. > The module is not loaded into the kernel by default and, when loaded, > can only be used by users in the wheel group.
Why the wheel group? Until now, the only special privilege this group has is that users are allowed to su to root, if they knew the password. It looks like now you've removed the root password barrier and allow anyone in the wheel group to manipulate processes to obtain root without a password :-) Kris
pgp00000.pgp
Description: PGP signature
