25 Apr
2001
25 Apr
'01
09:07
On Wed, 25 Apr 2001, semat wrote:
but unless sudo is well configured someone can always do sudo bash and then all their subsequent commands will not be logged. Same thing with sudo su -
well, that is not really true: unless sudo is *particularly badly* configured this is impossible! Remember that sudo wants you to list all alllowed commands in its config file, with path and all. So unless you do a 'ls /bin /sbin' and pipe the result into your sudo config, 'sudo bash' is going to shut the door at you and log the attempt in the logfile. Dirk