|
|
|
|
|
|
by mnarayan01
4858 days ago
|
|
|
It looks like you can run `sudo -k` without authenticating via password, so I guess you could use this to bypass the password requirement even if the user had not previously entered their password (provided that the account is capable of changing the system time). It's certainly worth mentioning (and patching), but I wouldn't describe it as "and boom you're root". |
|
|