Language Selection

English French German Italian Portuguese Spanish

The problem with "sudo"

I have written about biometrics a few days ago and how it's a bad idea to use biometric technologies for security. Today we'll be talking about a different rather popular security technology called "sudo".

Many linux distributions use "sudo" for pretty much everything (if you don't set one manually Ubuntu does set a random root password that you don't even have for example), "sudo" is installed on Mac OSX to allow you to gain full access to the system (espcially on the linux distributions that rely sudo all the GUI tools that modify the system are pretty much wrappers around sudo).

Now I don't want to talk about bugs. Every software has them, why should "sudo" be different, even though bugs in security software are often a lot nastier than in random apps? What I want to talk about is the actual problem I see in using "sudo".

rest here




More in Tux Machines

Security: Updates, Intel, Torvalds

  • Security updates for Tuesday
  • Intel: We've found severe bugs in secretive Management Engine, affecting millions
    Thanks to an investigation by third-party researchers into Intel's hidden firmware in certain chips, Intel decided to audit its firmware and on Monday confirmed it had found 11 severe bugs that affect millions of computers and servers. The flaws affect Management Engine (ME), Trusted Execution Engine (TXE), and Server Platform Services (SPS).
  • Open Source Security Podcast: Episode 71 - GitHub's Security Scanner
    Josh and Kurt talk about GitHub's security scanner and Linus' security email. We clarify the esoteric difference between security bugs and non security bugs.
  • Linus Torvalds 'sorry' for swearing, blames popularity of Linux itself
    Linux overlord Linus Torvalds has apologised – a bit – for calling some security-centric kernel contributors “f*cking morons”. Torvalds unleashed a profanity-laden rant at Google developer Kees Cook, over the latter's proposal to harden the kernel. Another Google security chap, Matthew Garret, asked Torvalds “ Can you clarify a little with regard to how you'd have liked this patchset to look?” To which Torvalds responded that “I think the actual status of the patches is fairly good with the default warning.”

Benchmarks: Linux Power Use, Sabrent EC-SS31, Phoronix Test Suite 7.6 M3

LinuxAndUbuntu Review Of Ubuntu MATE 17.10

Ubuntu Mate 17.10 is a pretty stable and rock solid distribution which has got most things right. There is nothing unlikable about the distro. However, I feel it could have been a lot better if they had allowed 4 windows to be snapped on each corners and done something about the opaque top panel. The software included are very much standard and even though some of their names have been changed we all know what’s under the hood. Overall Experience has been good. Having already tested Ubuntu with Gnome 3, I can say that Ubuntu Mate 17.10 feels a lot faster and quicker in terms of GUI response. Read more

Compact carrier turns Nvidia Jetson TX2 into an SBC

Aetina’s “ACE-N510” carrier for the Linux-powered Jetson TX1 and TX2 measures only 87 x 50mm, and offers HDMI, 2x USB 3.0, 2x CAN, and optional -20 to 70°C. When Aetina recently unveiled its Nano-ITX (120 x 120mm) ACE-N261 carrier for Nvidia’s Jetson TX2 and earlier, pin-compatible Jetson TX1 COMs, it mentioned an upcoming ACE-N510 that was even smaller. Now we have the details on the little beastie, which like Connect Tech’s Sprocket Jetson carrier, has a compact 87 x 50mm footprint that matches the Jetson modules it stacks on. The ACE-N510 is designed for smart cameras, robots, drones, industrial inspection, mobile medical, and deep learning. Read more