On Thu, Aug 12, 2021 at 01:25:06AM -0500, Brian Thompson wrote: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA512 > > On Thu, 2021-08-12 at 11:19 +0500, Andrey Rahmatullin wrote: > > On Thu, Aug 12, 2021 at 01:12:37AM -0500, Brian Thompson wrote: > > > Would you agree that there is an issue with sudo access that is > > > enabled > > > by default on most Debian and Debian-based distributions? The bug > > > may > > > not be in apt, but it definitely lives somewhere. > > Do you think "sudo access" itself is a "privilege escalation attack"? > > I do not. I think that the possibility of dangerously configured sudo > access is a vulnerability. Yet you are talking about "sudo access that is enabled by default". Or are you saying sudo access to apt is enabled by default on most Debian and Debian-based distributions? -- WBR, wRAR
Attachment:
signature.asc
Description: PGP signature