Recent content by JohnHancock

  1. J

    Why "sudo" allow so many privilege escalation

    Hello, I'm pretty new to the Linux world and I'm discovering a little bit about security. I wonder, while reading this: https://gtfobins.github.io/, why many basic commands (find, man, etc.), if they are allowed with sudo, allow a simple user to get a shell as root? For example, in my...
  2. J

    Questions about PAM

    Hello, I was wondering about PAM. If I add in the common-passwd file (in /etc/pam.d) the module cracklib (password policy), it applies on all services that use PAM right? So when I make a "adduser XXX", I notice that indeed, the module is well loaded and my password policy applied. I just...
See more
Top