[xen-tools-dev] Copying /etc/sudoers?!
Axel Beckert
abe at deuxchevaux.org
Fri Jul 23 11:56:37 CEST 2010
Hi,
On Fri, Jul 23, 2010 at 11:54:13AM +0200, Dmitry Nedospasov wrote:
> Has anyone noticed that xen-tools COPIES your /etc/sudoers?!
Nope. I don't use sudo on servers.
> how annoying. I find this to be a SERIOUS security issue as this
> tells the domU user's who has root on dom0!!!
Yeah, we should make it an option or role and by default not copy it.
Kind regards, Axel
--
/~\ Plain Text Ribbon Campaign | Axel Beckert
\ / Say No to HTML in E-Mail and News | abe at deuxchevaux.org (Mail)
X See http://www.asciiribbon.org/ | abe at noone.org (Mail+Jabber)
/ \ I love long mails: http://email.is-not-s.ms/ | http://noone.org/abe/ (Web)
More information about the xen-tools-dev
mailing list