security & suid/sudo plugins

Hari Sekhon hpsekhon at googlemail.com
Mon Sep 4 12:09:23 CEST 2006

Previous message: Antwort: Re: security & suid/sudo plugins
Next message: security & suid/sudo plugins
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Alexander Harvey wrote:
> Note to Hari: my understanding is that sudo won't work for account 
> that doesn't have a valid shell. Certainly all my testing led me to 
> that conclusion.

Err, I wasn't sure but this didn't sound right to me, I am sure a shell 
is not required for program execution, so I tested it. After 
/bin/falseing and locking the nagios account, the service check I have 
sudo NOPASSWDed still worked, and I cronned a job to get the date which 
ran every minute and output to a temp file. So it would seem that this 
is not correct. A valid shell is not required.

Hari Sekhon

-------------------------------------------------------------------------
Using Tomcat but need to do more? Need to support web services, security?
Get stuff done quickly with pre-integrated technology to make your job easier
Download IBM WebSphere Application Server v.1.0.1 based on Apache Geronimo
http://sel.as-us.falkag.net/sel?cmd=lnk&kid=120709&bid=263057&dat=121642
_______________________________________________
Nagios-users mailing list
Nagios-users at lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/nagios-users
::: Please include Nagios version, plugin version (-v) and OS when reporting any issue. 
::: Messages without supporting info will risk being sent to /dev/null

Previous message: Antwort: Re: security & suid/sudo plugins
Next message: security & suid/sudo plugins
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

More information about the Users mailing list