On 29 Oct, 10:37, Dmitry <dim...@gmail.com> wrote:
> Hi,
>
> I remember, but can not find it, that for non root user it's advised
> not include /sbin and /usr/sbin in $PATH. Is it right?
>
> If yes, I'll be glad to find a reference to security audit indicating
> it, as a proof to my manager :)
>

I've never came across such a recommendation - all the programs I can
think of in these directories should have additional controls to
prevent non-root users abusing them, and may be needed to see the
state of the system (e.g. ifconfig, mount, fuser...). And your
recommendation sounds like Security by obscurity which is generally
considered a bad thing.

C.