Language Selection

English French German Italian Portuguese Spanish

Setting the record straight on sudo

Filed under
Software
Security

I recently read a blog posting that denounced the use of sudo as insecure because of the following (briefly summed up and paraphrased) reasons:

1. The idea that not using the root account is wrong, using root for everything is fine.
2. That using sudo for everything provides a false sense of security over performing an action as root directly
3. That using a user account password to get a root shell is a bad idea
4. That using a root shell is not dangerous, and that this “grave misunderstanding” came from the idea that running X as root is dangerous
5. That sudo has very little place in the Enterprise
6. That relying on sudo is foolish, because it has bugs
7. That everything should be done from a root shell, and that you should have to know the “uber-secret root password” to get that access

My first reaction to this blog posting was that the author had no idea how to use sudo properly or why you would want to. My second reaction was to give a big thank you to Ubuntu and OS X that, by default, provide a password-less root account and give administrators sudo access to everything, which pretty much leads to these kinds of silly anti-sudo articles.

rest here




More in Tux Machines

Lumina Desktop 0.8.6 Released!

Just in time for PC-BSD & FreeBSD 10.2 (coming soon), the Lumina desktop has been updated to version 0.8.6! This version contains a number of updates for non-English users (following up all the new translations which are now available), as well as a number of important bug-fixes, and support for an additional FreeDesktop specification. The PC-BSD “Edge” packages have already been updated to this version and the FreeBSD ports tree will be getting this update very soon as well. Read more

Find The Perfect Linux-Compatible PC With Ubuntu's Hardware Database

Some PCs are more difficult to run Linux on than others — it’s all about the drivers. Some laptops are available with Linux pre-installed, but plenty aren’t — even though they may make great Linux PCs. The Ubuntu Certified Hardware database helps you find Linux-compatible PCs. Most computers can run Linux, but some are much easier than others. Certain hardware manufacturers (whether it’s Wi-Fi cards, video cards, or other buttons on your laptop) are more Linux-friendly than others, which means installing drivers and getting things to work will be less of a hassle. Read more

GNOME Software Package Manager App Updated for GNOME 3.16 to Fix Multiple Bugs

The GNOME Project released earlier today, August 3, the fifth maintenance release of the stable GNOME Software package manager application for the GNOME 3.16 desktop environment, a version that fixes seven issues. Read more

Linux Kernel 4.1.4 LTS Released with Numerous Updated Drivers, ARM64 Improvements

Today, August 3, Greg Kroah-Hartman announced the release and immediate availability for download of the fourth maintenance release of the stable, long-term supported Linux 4.1 kernel. Read more