Language Selection

English French German Italian Portuguese Spanish

The Perils of Sudo With User Passwords

Filed under
Security

The consensus among new Unix and Linux users seems to be that sudo is more secure than using the root account, because it requires you type your password to perform potentially harmful actions. In reality, a compromised user account, which is no big deal normally, is instantly root in most setups. This sudo thinking is flawed, but sudo is actually useful for what’s it was designed for.

The (wrong) idea is that you shouldn’t use the root account, because apparently it’s too “dangerous.” This argument usually comes from new Linux users and people that call themselves “network administrators,” but has no basis in reality. We’ll come back to that in a moment.

The concept behind sudo is to give non-root users access to perform specific tasks without giving away the root password. It can also be used to log activity, if desired.

Why is there a separate root account anyway?




More in Tux Machines

A Short MATE Desktop 1.17 Review in February 2017

MATE 1.17 is a testing release, it has no official announcement like 1.16 stable release (odd = unstable, even = stable). But what made me interested is because Ubuntu MATE 17.04 includes it by default so I write this short review. The most fundamental news is about MATE Desktop is now completely ported to GTK+3 leaving behind GTK+2. You may be interested seeing few changes and I have tried Ubuntu MATE 17.04 Alpha 2 to review MATE 1.17 below. Enjoy MATE 1.17! Read more Also: What's up with the hate towards Freedesktop?

Linux Graphics

Linux From Scratch 8.0 Released, Adding Major Changes

Linux From Scratch is a book which can be used to build an independent Linux distribution which doesn’t use any other Linux distribution as a base. It teaches you how things work under the hood and how to compile software and build your own Linux system. The guide is also free for all. BLFS (Beyond Linux from Scratch) is an additional guide which will take you through graphical user interfaces setup, printing support, networking and more. It also contains a lot of great information. Read more

Today in Techrights