On Fri, 13 Sep 2013 12:44:45 +0200, Donovan Watteau wrote:
Am I right thinking that sudo in base is still vulnerable to
CVE-2013-1776 for those who enable tty_tickets?
Yes, but the situation is no worse than with tty_tickets disabled.
If you are really worried about this you can simply disable
On 09/12/13 02:59, Michael W. Lucas wrote:
Hi,
I've noticed that the sudo on OpenBSD seems to have !ttytickets set by
default. In other words, I authenticate sudo once on, say, ttyp4, and
all of my login sessions on all my other ttyp* have authenticated to
sudo.
This, well, kind of surprised
On Thu, 12 Sep 2013 13:43:21 -0700, Todd C. Miller wrote:
On Wed, 11 Sep 2013 20:59:08 -0400, Michael W. Lucas wrote:
I've noticed that the sudo on OpenBSD seems to have !ttytickets set by
default. In other words, I authenticate sudo once on, say, ttyp4, and
all of my login sessions on
On 09/13/13 06:44, Donovan Watteau wrote:
On Thu, 12 Sep 2013 13:43:21 -0700, Todd C. Miller wrote:
On Wed, 11 Sep 2013 20:59:08 -0400, Michael W. Lucas wrote:
I've noticed that the sudo on OpenBSD seems to have !ttytickets set by
default. In other words, I authenticate sudo once on,
On 09/13/13, Nick Holland wrote:
On 09/13/13 06:44, Donovan Watteau wrote:
Hi,
Am I right thinking that sudo in base is still vulnerable to
CVE-2013-1776 for those who enable tty_tickets?
BTW, I was thinking about the following use case: PermitRootLogin set
to no, and a simple
On 2013-09-11 19:59, Michael W. Lucas wrote:
This, well, kind of surprised me. I'm sure you folks have thought this
through in much more detail than I have, but I can't find anything on
the rationale behind it.
It seems insecure. Can anyone enlighten me as to the thinking here?
I can't say
On Thu, Sep 12, 2013 at 10:27, Matthew Weigel wrote:
On 2013-09-11 19:59, Michael W. Lucas wrote:
This, well, kind of surprised me. I'm sure you folks have thought this
through in much more detail than I have, but I can't find anything on
the rationale behind it.
It seems insecure. Can
On Wed, Sep 11, 2013 at 10:50:19PM -0600, Andy Bradford wrote:
Thus said Michael W. Lucas on Wed, 11 Sep 2013 20:59:08 -0400:
This, well, kind of surprised me. I'm sure you folks have thought this
through in much more detail than I have, but I can't find anything on
the rationale behind
On Wed, 11 Sep 2013 20:59:08 -0400, Michael W. Lucas wrote:
I've noticed that the sudo on OpenBSD seems to have !ttytickets set by
default. In other words, I authenticate sudo once on, say, ttyp4, and
all of my login sessions on all my other ttyp* have authenticated to
sudo.
This, well,
I can't say whether this is the thinking of the OpenBSD developers,
but I have seen some concerns over the years that tty_tickets gives
a false sense of security.
Not to mention the annoyance.
Miod
Hi,
I've noticed that the sudo on OpenBSD seems to have !ttytickets set by
default. In other words, I authenticate sudo once on, say, ttyp4, and
all of my login sessions on all my other ttyp* have authenticated to
sudo.
This, well, kind of surprised me. I'm sure you folks have thought this
Thus said Michael W. Lucas on Wed, 11 Sep 2013 20:59:08 -0400:
This, well, kind of surprised me. I'm sure you folks have thought this
through in much more detail than I have, but I can't find anything on
the rationale behind it.
Is sudo enabled for any non-root users by default?
Andy
--
12 matches
Mail list logo