Timeline for Any program like `sudo` to gain root by having two users enter a password?
Current License: CC BY-SA 3.0
3 events
| when toggle format | what | by | license | comment | |
|---|---|---|---|---|---|
| Jun 24, 2011 at 14:50 | comment | added | Daniel Böhmer | The logic is not the problem. Giving parts of the root password to people doesn't work when different combinations of users shall be able to login as root. Either could a sudo-like program ask for some passwords and provide a shell directly. Or a userland program could collect different secrets to reveal a token that allows root login (token not printed to users, e.g. SSH key to login as root on localhost). There are algorithms that work with any set of users out of a group, see WP:Secret sharing; | |
| Jun 24, 2011 at 14:46 | comment | added | Daniel Böhmer | After all, I have to say that I do not distrust the others. It's just that people trust me to manage their mailboxes and I cannot provide root access to somebody else without security measures. I trust them, they trust me, but not all users trust each other. | |
| Jun 24, 2011 at 14:41 | history | answered | unpythonic | CC BY-SA 3.0 |