Bagas Sanjaya
2019-Aug-17 03:38 UTC
[CentOS] Giving full administrator privileges through sudo on production systems
Why did you say it is wrong to give full admin privileges to random users? -- An old man doll... just what I always wanted! - Clara
John Pierce
2019-Aug-17 04:12 UTC
[CentOS] Giving full administrator privileges through sudo on production systems
On Fri, Aug 16, 2019 at 8:39 PM Bagas Sanjaya <bagasdotme at gmail.com> wrote:> Why did you say it is wrong to give full admin privileges to random users? >$ sudo rm -rf / $ sudo <install keylogger of choice> $ sudo cp /etc/{passwd,shadow} $home; (run john-the-ripper against passwd/shadow files). etc etc etc. -- -john r pierce recycling used bits in santa cruz
Valeri Galtsev
2019-Aug-17 13:25 UTC
[CentOS] Giving full administrator privileges through sudo on production systems
> On Aug 16, 2019, at 11:12 PM, John Pierce <jhn.pierce at gmail.com> wrote: > > On Fri, Aug 16, 2019 at 8:39 PM Bagas Sanjaya <bagasdotme at gmail.com> wrote: > >> Why did you say it is wrong to give full admin privileges to random users? >> > > > $ sudo rm -rf / >I like this one. Long-long ago it was one of the ?tricky? questions at the UNIX admin test (exam). Basically, no matter how devastating that may sound, the command only will remove what is (alphabetically it was that time) before /dev/[root_device]. Once the device root filesystem lives on is removed from /dev, no further damage is done. So, you will be able to mount drive on another machine and get your /etc, /home, /var, /usr/local intact ;-) Asking that question other people gave me (an them usually) a lot of fun. Valeri> $ sudo <install keylogger of choice> > > $ sudo cp /etc/{passwd,shadow} $home; (run john-the-ripper against > passwd/shadow files). > > etc etc etc. > > > > -- > -john r pierce > recycling used bits in santa cruz > _______________________________________________ > CentOS mailing list > CentOS at centos.org > https://lists.centos.org/mailman/listinfo/centos++++++++++++++++++++++++++++++++++++++++ Valeri Galtsev Sr System Administrator Department of Astronomy and Astrophysics Kavli Institute for Cosmological Physics University of Chicago Phone: 773-702-4247 ++++++++++++++++++++++++++++++++++++++++
James Szinger
2019-Aug-19 20:53 UTC
[CentOS] Giving full administrator privileges through sudo on production systems
On Fri, Aug 16, 2019 at 10:13 PM John Pierce <jhn.pierce at gmail.com> wrote:> > $ sudo rm -rf /Just for fun, I cloned a C7 VM and ran rm -rf. I then examined the disk image with guestfish. Everything was gone except for a few empty directoriers: /dev, /etc, /proc, /sys, and so on. Jim
Possibly Parallel Threads
- Giving full administrator privileges through sudo on production systems
- Giving full administrator privileges through sudo on production systems
- Giving full administrator privileges through sudo on production systems
- Giving full administrator privileges through sudo on production systems
- Giving full administrator privileges through sudo on production systems