|
Title: Sudoers and the Shell Escape Post by: pocketreef on July 14, 2008, 01:59:42 PM Hi, It's my first post here. But I'm a very old rootvg user.
How do you guys filter shell escapes on AIX? I have seen that the latest sudoers claims to filter it, however I keep having this error when I try to change accounts: sudo su - rr5tzu 3004-505 Cannot set process environment. $ sudo -V Sudo version 1.6.9p15 Thanks a lot Title: Re: Sudoers and the Shell Escape Post by: Michael on July 23, 2008, 03:56:33 PM This is a hard one for me - as I do not use, and have basically never used - sudo.
And starting with AIX 6.1 you dont want to use sudo - RBAC is the way to go! Title: Re: Sudoers and the Shell Escape Post by: pocketreef on July 25, 2008, 03:09:35 PM Thanks Michael for your reply.
RBAC isn't an option now. I run 5.3 in a huge environment. It will take years untill the complete 6.1 migration. I did not give up and if someone has a candle please show up. Cheers |