Language Selection

English French German Italian Portuguese Spanish

Simplify the Use of Sudo

Filed under
Software
HowTos

Being in the security business, I am constantly surprised by how many companies continue to rely on security practices that they know to be poor. Organizations, large and small, make excessive use of the root user account to perform routine maintenance on their UNIX and Linux computers. Even though companies often chose UNIX or Linux for better security, they employ practices that seriously undermine this advantage.

There are many reasons to not rely on the use of the root account:

* Because you can do anything, it's easy to make mistakes with dire consequences
* When something goes wrong, it's impossible to figure out who was responsible
* If someone leaves the company or the IT group, you have to change the root password and let everyone know the new one
* The opportunity for mischief is high
* You'll never pass a security audit

Companies use the root account because the alternative requires a lot of work. All too often, easy beats smart.

rest here




More in Tux Machines

Audacious 3.8.1 Open-Source Music Player Supports Opus Cover Art in the Info Bar

More than two months after the release of the major Audacious 3.8 open-source and cross-platform music player software for GNU/Linux and Microsoft Windows operating system, the first maintenance update arrives on December 6, 2016. Read more

Ubuntu Core has the keys to IoT security

In October, a DDoS attack on Dyn's infrastructure took down a big chunk of the internet, making sites like Amazon and Twitter inaccessible. It was the first major attack involving IoT (internet of things) devices. Fortunately, it was also a benign attack: no one got hurt, no one died. However, the next attack could be catastrophic. No one knows when it will happen. No one knows the magnitude. Read more

Android Marshmallow on PC Falls Flat

The Android-x86 Project eventually may become a viable operating system alternative for your desktop and laptops computers, but it's not there yet. You will have to wait a while for the developers to fix a number of failures with the latest release upgrading Android-x86 to Marshmallow 6.0.1. The developers late this summer released the first stable version of Android-x86 6.0, codenamed "Marshmallow." Android-x86 lets you run the Android OS with the Google Chrome browser on your desktop and laptop computers, rather than buying one of the qualified Chromebooks with the Google Play Store features bolted on. Read more

Korora 25 Linux Released, Based on Fedora 25 Ships with Cinnamon 3.2, MATE 1.16

On December 7, 2016, the development team behind the Fedora-based Korora Linux operating system proudly announced the release and general availability of Korora 25. Read more