RGBCube/serenity
1
Fork 0
mirror of https://github.com/RGBCube/serenity synced 2025-07-26 06:57:46 +00:00
Code Issues Activity Actions

Userland: Check sudoers file perms and owner in pls

Browse source 
As per comment found in #6319 by @bcoles, `pls` should check the
permissions and owner of the sudoers file to ensure that it hasn't
been compromised.
This commit is contained in:
Jesse Buhagiar 2021-04-17 00:55:05 +10:00 committed by Ali Mohammad Pur
parent 82b48d867d
commit d44e2c9ad9
5 changed files with 99 additions and 86 deletions
Download patch file Download diff file Expand all files Collapse all files

4
Base/usr/share/man/man8/pls.md
View file

@ -11,7 +11,7 @@ $ pls [command]
## Description
Executes a command as the root user (uid and gid 0), given that the user executing `pls` is located in
the sudoers file.
the plsusers file.
It is possible to execute commands that contain hyphenated options via the use of `--`, which signifies the
end of command options. For example:
@ -21,7 +21,7 @@ $ pls -- ls -la
```
## Files
/etc/sudoers - List of users that can run `pls`
/etc/plsusers - List of users that can run `pls`
## Examples