> So what's so secure about using sudo?
Good question :)
For a standalone system, used by a single user, it can be fairly
easily argued that 'sudo' vs. 'su' is redundant.
The advantages of 'sudo' come in when a system is accessed by multiple
users, who's errors might be costly.
And, as
* https://www.youtube.com/watch?v=o0purspHg-o
*
https://www.bsdcan.org/2014/schedule/attachments/283_2014-04-29%20sudo%20tutorial%20-%20bsdcan%202014.pdf
--
Rabin
On Tue, 18 Jun 2019 at 09:25, Shlomo Solomon
wrote:
> This has bothered me for years and I decided to "get it off my chest".
>
>
I'm not an expert, but I found out that if I login as a regular user, I use
sedo only when necessary. But when I login as root (which I do) I am root
all the time. This may cause problems if by mistake I enter a command which
might cause a big damage as root, but not a big damage as a regular
One reason that I like sudo is that root can be disabled for all
intents and purposes. Most random SSH logins were once to the root
account. We hardly ever see that anymore, thanks in no small part to
the deprecation of root in many widespread Linux distros.
On Tue, Jun 18, 2019 at 9:24 AM Shlomo
In addition to Omer's answer, it used to be common on large multi-user
systems to have the sudo use of each user logged, for accountability.
On 2019-06-18 09:23, Shlomo Solomon wrote:
> This has bothered me for years and I decided to "get it off my chest".
>
> For many years I used su to do
Using /etc/sudoers and /etc/sudoers.d, it is possible to limit the
operations that an user can do as a superuser.
It is even possible to configure some operations as ones not requiring
him to enter his password.
See 'man 5 sudoers'.
On Tue, 2019-06-18 at 09:23 +0300, Shlomo Solomon wrote:
>
This has bothered me for years and I decided to "get it off my chest".
For many years I used su to do administrative tasks, but "everyone"
uses sudo and the claim is that it's more secure than actually logging
in as root.
In principal, of course, root login is not a good thing, but let's