fedora-devel-list@redhat.com
[Top] [All Lists]
<prev [Date] next>
<prev [Thread] next>

Re: Local users get to play root?

from [Chris Adams]
Subject: Re: Local users get to play root?
From: Chris Adams
Date: Thu, 19 Nov 2009 08:00:01 -0600 
Once upon a time, Ricky Zhou <ricky@xxxxxxxxxxxxxxxxx> said:
> I might be wrong on this, but wouldn't the attacker need to trick 
> yum/packagekit into using the malicious repo first?  I didn't think that 
> was allowed for non-root users.

1.5 words: NetworkManager.  Think about it.

-- 
Chris Adams <cmadams@xxxxxxxxxx>
Systems and Network Administrator - HiWAAY Internet Services
I don't speak for anybody but myself - that's enough trouble.

-- 
fedora-devel-list mailing list
fedora-devel-list@xxxxxxxxxx
https://www.redhat.com/mailman/listinfo/fedora-devel-list
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Local users get to play root?, Chris Adams
Next by Date:  Re: rpms/gpm/devel gpm.spec,1.78,1.79, Nikola Pajkovsky
Previous by Thread:  Re: Local users get to play root?, Till Maas
Next by Thread:  Re: Local users get to play root?, Richard Hughes
Indexes:  [Date] [Thread] [Top] [All Lists]