On 1/29/21 8:54 AM, john doe wrote: > In the case of sudo, you could deny the use of sudo by removing all > users from the sudoers file or by denying sudo access explicitly in the > sudoers file. > > -- > John Doe >
As I understand it, this would not have protected against the recent local privilege escalation bug in sudo. If you're interested in improving security, the desire is to reduce the total amount of privileged code on the machine. (Though removing people from sudoers obviously helps.) Antonio
OpenPGP_0xB01C53D5DED4A4EE.asc
Description: application/pgp-keys
OpenPGP_signature
Description: OpenPGP digital signature
