found 214546 3.103 thanks Re: Joerg Hoh 2007-06-24 <[EMAIL PROTECTED]> > Since the rewrite some time ago (and the introduction of "use strict") the > usage of the perl security features in adduser has been improved. Is this > problem still valid?
Just tried it, still doesn't work:
$ tail -1 /etc/super.tab
adduser /usr/sbin/adduser cb env=PATH
$ super adduser foo
Adding user `foo' ...
Adding new group `foo' (1012) ...
Insecure $ENV{PATH} while running setuid at
/usr/share/perl5/Debian/AdduserCommon.pm line 161.
[exit 2]
Christoph
--
[EMAIL PROTECTED] | http://www.df7cb.de/
signature.asc
Description: Digital signature
