Re: Ethereal in the Background
Re: Ethereal in the Background
- Subject: Re: Ethereal in the Background
- From: email@hidden (Randal L. Schwartz)
- Date: 14 Apr 2006 14:40:56 -0700
>>>>> "Hemant" == Hemant Shah <email@hidden> writes:
Hemant> Why all all commands to run without password. Just allow ethereal to
Hemant> run without password:
Hemant> username ALL= (root) NOPASSWD: /path/to/ethereal
However, I believe ethereal can be told to launch child processes, or reads
publicly-placed files for configuration, such as which plugins to add. So in
this case, your change has the *appearance* of additional safety, and in fact,
has no additional safety whatsoever.
I tend to shy away from things that increase the "appearance" of security. In
fact, I recommend *against* them. Hence, I would push back on your change,
and ask you to consider my point.
--
Randal L. Schwartz - Stonehenge Consulting Services, Inc. - +1 503 777 0095
<email@hidden> <URL:http://www.stonehenge.com/merlyn/>
Perl/Unix/security consulting, Technical writing, Comedy, etc. etc.
See PerlTraining.Stonehenge.com for onsite and open-enrollment Perl training!
_______________________________________________
Do not post admin requests to the list. They will be ignored.
X11-users mailing list (email@hidden)
This email sent to email@hidden