The sudo feature
A. Karl Kornel
karl at kornel.name
Thu Dec 15 10:19:48 UTC 2005
On Dec 15, 2005, at 4:31 AM, Gervase Markham wrote:
> A. Karl Kornel wrote:
>> I have remained pretty quiet throughout this discussion, and
>> most of what I would say has been said already. However, I do
>> want to say a few things now.
>
> One question that occurred to me: if only admins can impersonate
> other users, what's the point of bz_sudo_protect?
As Joel basically said, this is all determined by groups, so you
could add people to bz_sudo, or just bz_sudo_protect if you want to
afford them some protection.
> After all, if they are admins, they can just go and change the
> Param value to remove the person they want to impersonate.
True, they could go and change the groups membership (for anyone
with editusers, actually).
===================
| A. Karl Kornel
|
| karl at kornel.name
===================
More information about the developers
mailing list