[Labs-l] [Labs-announce] sudo vulnerability in toollabs
Legoktm
legoktm.wikipedia at gmail.com
Mon Feb 22 08:11:41 UTC 2016
Hi,
On 02/21/2016 07:46 PM, Andrew Bogott wrote:
> Most labs projects have permissive sudo policies by default. A few
> have locked down policies, and those projects have been closely checked.
> Nonetheless, for completeness here are projects that were temporarily
> less secure: 'catgraph', 'translatesvg', 'toolsbeta', 'jawiki',
> 'wmve-techteam', 'utrs', 'wmt', 'bastion', 'project-proxy',
> 'mediawiki-verp', 'glam', 'wlmjudging', 'tools',
> 'account-creation-assistance'
To clarify, these projects should specifically be checked because they
don't have "permissive sudo policies"? Could you expand on what you mean
by that?
-- Legoktm
More information about the Labs-l
mailing list