23.10.2011 04:08, intrigeri пишет: > I see you went the sudo way. The (minimal) audit that was conducted > before deciding this solution was safe must be documented somewhere.
Note was added to readme. > For this solution to be safe, I think the sudoer credentials should be > limited to the setupcon command, *without* command line arguments, at > least to avoid the use of --force that more or less triggers a DoS. > See the section about Cmnd_List in sudoers(5) for how to implement > this using "" in place of the arguments. Thanks. That should be in recently pushed 0.1.0 version. cheers, Max.
signature.asc
Description: OpenPGP digital signature
_______________________________________________ tails-dev mailing list [email protected] https://mailman.boum.org/listinfo/tails-dev
