Show Posts
This section allows you to view all posts made by this member. Note that you can only see posts made in areas you currently have access to.
Pages: [1]
1
Installation and Upgrades / For developer team - sudo and perl binary
« on: October 28, 2019, 05:41:32 pm »
Hi there, I need a control panel with high features related to security
I check the Zentyal Server Development Edition source code and to run system shell command the user who run the control panel has to be add to group sudo or admin, is this correct?
If that correct, the group admin has this privileges
Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL
So in case the Web server process gets hijacked through some vulnerability, they can have privileges like root because the group admin
please see this mention related to perl binary
https://security.stackexchange.com/questions/219989/sudo-white-list-just-program-perl
Now my main question, does the Zentyal commercial version has different functionality related to sudo?
I check the Zentyal Server Development Edition source code and to run system shell command the user who run the control panel has to be add to group sudo or admin, is this correct?
If that correct, the group admin has this privileges
Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL
So in case the Web server process gets hijacked through some vulnerability, they can have privileges like root because the group admin
please see this mention related to perl binary
https://security.stackexchange.com/questions/219989/sudo-white-list-just-program-perl
Now my main question, does the Zentyal commercial version has different functionality related to sudo?
Pages: [1]