> Only admins would have access to those sudo commands.

But the sudoers line shows an intent to restrict access to tee only:

%zoom ALL=NOPASSWD:/usr/bin/tee

The hole that Karsten has shown is that the line in sudoers is really the 
security equivalent of:

%zoom ALL=NOPASSWD:ALL

Whether it is a huge hole depends on whether you would be ok with allowing all 
users in %zoom to be able to run any command through sudo without a password.

Tomas

Reply via email to