How do I prevent the chaining together of two uroot sessions?
How do I configure uroot to prevent unauthorized users from running uroot during a uroot session?
How do I prevent unauthorized users from gaining root permissions?
How do I secure root permissions?
VigilEnt Security Agent for Unix 4.0
VigilEnt Security Agent for Unix 5.0
By default, uroot allows you to run additional uroot sessions during an existing uroot session. When this feature is enabled, an unauthorized user may be able to gain root privileges.
For example, you can run uroot during an existing uroot session by running the following command :
user1@somehost> uroot uroot /bin/sh
To disable the ability to run additional uroot sessions during an existing uroot session:
- Using a text editor, open the
- Type the following text near the top of the uroot.cfg file, preferably after the lines that start with a pound sign (#):
- Save and close the file.