Page MenuHomePhabricator

Write some labs tests that monitor login and sudo permissions
Open, MediumPublic

Description

This will be a lot of trouble, but it might be worthwhile to write some automated tests that log in on a few tools hosts, verifying that access works where it should and /does not work where it should not/.

Equivalent tests could be written to double-check sudo policies.

https://wikitech.wikimedia.org/wiki/Incident_documentation/20160212-LabsSudoVulnerability

Related Objects