467610 – RFE: Add sbin in $PATH environment

Bug 467610 - RFE: Add sbin in $PATH environment

Summary: RFE: Add sbin in $PATH environment

Keywords:
Status:	CLOSED DUPLICATE of bug 467605
Alias:	None
Product:	Red Hat Enterprise Linux 5
Classification:	Red Hat
Component:	bash
Sub Component:
Version:	5.4
Hardware:	All
OS:	Linux
Priority:	medium
Severity:	medium
Target Milestone:	rc
Target Release:	---
Assignee:	Roman Rakus
QA Contact:	BaseOS QE
Docs Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+	depends on / blocked

Reported:	2008-10-19 11:47 UTC by secubie
Modified:	2014-01-13 00:07 UTC (History)
CC List:	1 user (show)
Fixed In Version:
Doc Type:	Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed:	2008-10-20 08:05:04 UTC
Target Upstream Version:
Embargoed:
Dependent Products:

Attachments	(Terms of Use)

Description secubie 2008-10-19 11:47:30 UTC

Description of problem:
Omitting system binary path is a type of "security through obscurity". In most cases, this method of security is not hard to defeat. Not including sbin dir will not make a system more secure. When a normal user wants to execute a file within that directory, if he has permission, all he has to do is to add prefix /sbin to the execute file name. I believe it is never a good idea to secure a system though obscurity. In this case, let the permission handle the authorisation. If you do not want a normal user execute a system binary file, chmod it properly.

Version-Release number of selected component (if applicable):
current version

Comment 1 Radek Bíba 2008-10-20 08:05:04 UTC


*** This bug has been marked as a duplicate of bug 467605 ***

Note You need to log in before you can comment on or make changes to this bug.