Language Selection

English French German Italian Portuguese Spanish

The Perils of Sudo With User Passwords

Filed under
Security

The consensus among new Unix and Linux users seems to be that sudo is more secure than using the root account, because it requires you type your password to perform potentially harmful actions. In reality, a compromised user account, which is no big deal normally, is instantly root in most setups. This sudo thinking is flawed, but sudo is actually useful for what’s it was designed for.

The (wrong) idea is that you shouldn’t use the root account, because apparently it’s too “dangerous.” This argument usually comes from new Linux users and people that call themselves “network administrators,” but has no basis in reality. We’ll come back to that in a moment.

The concept behind sudo is to give non-root users access to perform specific tasks without giving away the root password. It can also be used to log activity, if desired.

Why is there a separate root account anyway?




More in Tux Machines

XFCE 4.12 Released With Several Changes, Install In Ubuntu


xfce 4.12 released install in ubuntu

Xfce is a lightweight desktop environment for UNIX-like operating systems. It aims to be fast and low on system resources, while still being visually appealing and user friendly. After two years and 10 months Xfce sees a newreleaseXfce 4.12 with so many changes.
 

Read At LinuxAndUbuntu

Linux Kernel Developer Work Spaces Video: Tejun Heo, Red Hat

Tejun Heo is a Linux kernel developer and a principal software engineer at Red Hat. In this video he takes us on a tour of his home office and answers a few questions about his work as a kernel subsystem maintainer. Read more

Xfce 4.12 Has Been Officially Released

After two years of hard work, the Xfce development team had the pleasure of announcing a few minutes ago, February 28, the immediate and general availability of the highly anticipated Xfce 4.12 desktop environment for GNU/Linux distributions. Read more

New Tizen Tools Version Released (15.01)

A new version of the Tizen development tools has been released, version 15.01, and it is available on download.tizen.org, including the following: GBS 0.23.2 MIC 0.24.4 REPA 0.3 BMAP-TOOLS 3.3 Read more