Thanks for reporting this issue, but the fact that the root user has
full control over the system is not a bug, or a security issue. I would
suggest not running as root and to use the sudo command when specific
actions are needed to be taken as the root user.
In order to compromise the init
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
ok.lets compromise YOUR linux box and we'll see if that same statement
RINGS true.how about the CORPORATE unix box,eh?
'sudo' does NOT ELIMINATE the ISSUE at hand.And yes, it is an attack
vector or I wouldn't have been able to do it so easily.all
