Hello Folks, ansible(before 2.4) uses /bin/sh for executing tasks, we want to restrict ansible account in sudo for certain tasks, in the process of this we need to give specifiy /bin/sh in sudoers command list for ansible account.
Now the question is by giving /bin/sh to the ansible user account(service account), user can gain root access automatically by any means? any security implications if i give /bin/sh to ansible account? Appreciate if you can guide to any article that shed light on ansible security. -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to ansible-project+unsubscr...@googlegroups.com. To post to this group, send email to ansible-project@googlegroups.com. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/6ee5a712-ed8b-4c74-8f40-c81ac507058b%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.