[Bug 1220586] sudo wrapper inside $HOME/bin

29 Feb 2024


      https://bugzilla.suse.com/show_bug.cgi?id=1220586
https://bugzilla.suse.com/show_bug.cgi?id=1220586#c4

--- Comment #4 from Sławomir Lach <slawek@lach.art.pl> ---
I think, solution could be:
let sudo check each parent executable. If it is named (file name, not
invocation way) sudo, then real sudo will refuse to work.
We can think about what happens, if attacker wr9te own bash to handle sudo
invocarion in different way or define sudo alias.
-- 
You are receiving this mail because:
You are on the CC list for the bug.

[Bug 1220586] sudo wrapper inside $HOME/bin

bugzilla_noreply＠suse.com