Red Hat Bugzilla – Bug 467610
RFE: Add sbin in $PATH environment
Last modified: 2014-01-12 19:07:53 EST
Description of problem:
Omitting system binary path is a type of "security through obscurity". In most cases, this method of security is not hard to defeat. Not including sbin dir will not make a system more secure. When a normal user wants to execute a file within that directory, if he has permission, all he has to do is to add prefix /sbin to the execute file name. I believe it is never a good idea to secure a system though obscurity. In this case, let the permission handle the authorisation. If you do not want a normal user execute a system binary file, chmod it properly.
Version-Release number of selected component (if applicable):
*** This bug has been marked as a duplicate of bug 467605 ***