|
|
|
|
|
|
by theg5prank
4677 days ago
|
|
|
1. Because that doesn't fix the vulnerability, only narrows the window in which the exploit works. 2. Because it breaks the "ttl" feature of sudo for people who log in and out frequently (e.g., create and destroy terminal windows). 3. Because .bash_logout is only executed when a login shell exits. Perhaps a similar but more elaborate solution could work to better mitigate this, though. |
|
|
Always use a new shell for sudo. Always exit that shell when done.