245397 – app-admin/sudo-1.6.9_p16 is too "secure" with no alternatives

Bug 245397 - app-admin/sudo-1.6.9_p16 is too "secure" with no alternatives

Summary: app-admin/sudo-1.6.9_p16 is too "secure" with no alternatives

Status:	RESOLVED WONTFIX

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Default Configs (show other bugs)
Hardware:	AMD64 Linux

Importance:	High minor
Assignee:	Gentoo Security

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2008-11-03 13:22 UTC by repsons
Modified:	2008-11-03 17:40 UTC (History)
CC List:	0 users

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description repsons 2008-11-03 13:22:15 UTC

--with-secure-path=/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin:/opt/bin:/usr/kde/3.5/sbin:/usr/kde/3.5/bin:/usr/qt/3/bin
As per my understanding, this is only going to make problems, if user doesn't understand what is he doing, what better is that going to be?
At least, there should be an useflag not to enable it!

Reproducible: Always

Actual Results:  
I can't load any other PATH residing programs without full path to them after sudo! Nightmare.

Comment 1 SpanKY gentoo-dev

2008-11-03 17:30:20 UTC

if you spend a little time googling, you'll see this is how sudo has always worked for everyone

considering $PATH changes a lot, adding a USE flag to set secure-path wont work

just do what everyone else does:
sudo env PATH="$PATH" ........

Comment 2 repsons 2008-11-03 17:36:17 UTC

Please explain more... What is the reason behind this?

Comment 3 repsons 2008-11-03 17:38:26 UTC

>considering $PATH changes a lot, adding a USE flag to set secure-path wont work
Misunderstood: a useflag not to use it!

Comment 4 SpanKY gentoo-dev

2008-11-03 17:40:52 UTC

read the sudo documentation