JohnHancock
New Member
Hello,
I'm pretty new to the Linux world and I'm discovering a little bit about security.
I wonder, while reading this: https://gtfobins.github.io/, why many basic commands (find, man, etc.), if they are allowed with sudo, allow a simple user to get a shell as root?
For example, in my attached file, all these commands allow, if the user has access via sudo, to gain root access to the shell ? Is it normal that this exists and that it is so simple?
Thank you
I'm pretty new to the Linux world and I'm discovering a little bit about security.
I wonder, while reading this: https://gtfobins.github.io/, why many basic commands (find, man, etc.), if they are allowed with sudo, allow a simple user to get a shell as root?
For example, in my attached file, all these commands allow, if the user has access via sudo, to gain root access to the shell ? Is it normal that this exists and that it is so simple?
Thank you