19 Dec
2015
19 Dec
'15
10:22 p.m.
On Saturday 19 December 2015 19:45:14 Giuliano Colla wrote:
Letting any user do anything just by typing sudo
before a command is a
rather peculiar way of implementing security, be it the old Wheezy, or
the newer Ubuntu (and its siblings).
Hear, hear. I know someone who upgraded to the next version of Ubuntu from
an LTS version,*by* *mistake*. Thereby kyboshing her most necessary piece of
professional software.
There are indeed some convincing arguments for having sudo, with limited
privileges, available in a multi user environment, but in a single user
environment, where that single user has full root privileges available as
sudo, it is a disaster waiting to happen.."Most people", when asked to input
their password do so automatically without thinking. If asked for root's
password, they do at least have to think.
Lisi