|
|
|
|
|
|
by rmetzler
1759 days ago
|
|
|
> one needs to run commands as root (sudo) for common administrative tasks like mounting a disk I would think if you don't do this, an attacker who is able to execute code but is non-root yet could easily elevate permissions by shadowing legitimate pathes and trick root into executing untrusted code. I'm not a security engineer and just find it interesting, so if my thinking is off, please correct me. |
|
|