Re: Don't try this at home kids

2021-12-05 Thread Andrei POPESCU
On Lu, 29 nov 21, 22:42:01, David Wright wrote: > > You don't have to use sudo in the manner shown above. You can use > it to allow certain users to run certain commands. I use it to run > a defined set of routine commands without having to bother to switch > to root, or to authenticate, or be car

Re: Don't try this at home kids

2021-12-05 Thread Andrei POPESCU
On Ma, 30 nov 21, 12:19:05, Joe Pfeiffer wrote: > Paul Johnson writes: > > > > Make sure you log out and log back in after you do 'adduser joe > > sudo' (or whatever your username is). Group permissions are > > generally only effective as they were at the time of that session's > > login. > >

Re: Don't try this at home kids

2021-12-02 Thread Nicholas Geovanis
On Mon, Nov 29, 2021, 10:27 PM Tom Dial wrote: > > > On 11/29/21 17:19, Nicholas Geovanis wrote: > > On Mon, Nov 29, 2021, 5:14 PM James H. H. Lampert < > jam...@touchtonecorp.com > wrote: > > > > And the only > > reason ROOT access is more dangerous

Re: Don't try this at home kids

2021-12-02 Thread David Wright
On Tue 30 Nov 2021 at 13:15:56 (-0500), Greg Wooledge wrote: > On Tue, Nov 30, 2021 at 11:12:49AM -0600, Paul Johnson wrote: > > On Mon, Nov 29, 2021 at 11:57 PM Joe Pfeiffer wrote: > > > David Wright writes: > > > > As /etc/sudoers already contains the line: > > > > > > > > %sudo ALL=(ALL:AL

Re: Don't try this at home kids

2021-11-30 Thread Joe Pfeiffer
Paul Johnson writes: > On Mon, Nov 29, 2021 at 11:57 PM Joe Pfeiffer wrote: > > David Wright writes: > > > On Mon 29 Nov 2021 at 17:47:24 (-0500), Jude DaShiell wrote: > >> sudo doesn't ask me for my password and I didn't even touch /etc/sudoers > >> to do it. A file placed in /etc/sudoers

Re: Don't try this at home kids

2021-11-30 Thread Greg Wooledge
On Tue, Nov 30, 2021 at 11:12:49AM -0600, Paul Johnson wrote: > On Mon, Nov 29, 2021 at 11:57 PM Joe Pfeiffer wrote: > > David Wright writes: > > > As /etc/sudoers already contains the line: > > > > > > %sudo ALL=(ALL:ALL) ALL > > > > > > one should be able to achieve the same effect by > > >

Re: Don't try this at home kids

2021-11-30 Thread Paul Johnson
On Mon, Nov 29, 2021 at 11:57 PM Joe Pfeiffer wrote: > David Wright writes: > > > On Mon 29 Nov 2021 at 17:47:24 (-0500), Jude DaShiell wrote: > >> sudo doesn't ask me for my password and I didn't even touch /etc/sudoers > >> to do it. A file placed in /etc/sudoers.d with permissions of 0440 >

Re: Don't try this at home kids

2021-11-29 Thread Joe Pfeiffer
David Wright writes: > On Mon 29 Nov 2021 at 17:47:24 (-0500), Jude DaShiell wrote: >> sudo doesn't ask me for my password and I didn't even touch /etc/sudoers >> to do it. A file placed in /etc/sudoers.d with permissions of 0440 having >> any name you choose and contents like: >> user ALL=(ALL)

Re: Don't try this at home kids

2021-11-29 Thread David Wright
On Mon 29 Nov 2021 at 17:47:24 (-0500), Jude DaShiell wrote: > sudo doesn't ask me for my password and I didn't even touch /etc/sudoers > to do it. A file placed in /etc/sudoers.d with permissions of 0440 having > any name you choose and contents like: > user ALL=(ALL) NOPASSWD:ALL > in it with us

Re: Don't try this at home kids

2021-11-29 Thread Tom Dial
On 11/29/21 17:19, Nicholas Geovanis wrote: > On Mon, Nov 29, 2021, 5:14 PM James H. H. Lampert > wrote: > >  And the only > reason ROOT access is more dangerous than, say, QSECOFR access on OS/400 > (or whatever IBM is calling it this week) is

Re: Don't try this at home kids

2021-11-29 Thread Nicholas Geovanis
On Mon, Nov 29, 2021, 5:14 PM James H. H. Lampert wrote: > And the only > reason ROOT access is more dangerous than, say, QSECOFR access on OS/400 > (or whatever IBM is calling it this week) is because there's nothing > stopping a Linux ROOT from doing things *nobody* should be allowed to do

Re: Don't try this at home kids

2021-11-29 Thread John Hasler
Jeremy Ardley wrote: > P.P.S The conventional instruction is to use visudo to do the > edits. Which means using Vi, which is another anachronism that should > be humanely put down. Visudo will use whatever editor you configure it to use. Read the visudo man page. -- John Hasler j...@sugarbit.co

Re: Don't try this at home kids

2021-11-29 Thread Bob Bernstein
On Mon, 29 Nov 2021, James H. H. Lampert wrote: And the only reason ROOT access is more dangerous than, say, QSECOFR access on OS/400 (or whatever IBM is calling it this week) is because there's nothing stopping a Linux ROOT from doing things *nobody* should be allowed to do without putting t

Re: Don't try this at home kids

2021-11-29 Thread Jeremy Ardley
On 30/11/21 7:14 am, James H. H. Lampert wrote: I have access to a number of Amazon Linux virtual boxes, that don't like password authentication in general (preferring certificate authentication . . . which authenticates the BOX that is ssh-ing in, but not the WARM BODY between the chair and

Re: Don't try this at home kids

2021-11-29 Thread James H. H. Lampert
On 11/29/21 2:41 PM, Jeremy Ardley wrote: P.S. I am totally unconvinced about the arguments for using sudo rather than running as root. You can do exactly the same damage with sudo as being root user. P.P.S The conventional instruction is to use visudo to do the edits. Which means using Vi, whi

Re: Don't try this at home kids

2021-11-29 Thread Igor Korot
Hi, On Mon, Nov 29, 2021 at 4:50 PM Pierre-Elliott Bécue wrote: > > > Hello, > > Bob Bernstein wrote on 29/11/2021 at 23:25:52+0100: > > > How do I tell sudo not to ask me for my password? > > > > It's me. I'm on my computer. I already logged in with my password. No > > one else is logged on. >

Re: Don't try this at home kids

2021-11-29 Thread Pierre-Elliott Bécue
Hello, Bob Bernstein wrote on 29/11/2021 at 23:25:52+0100: > How do I tell sudo not to ask me for my password? > > It's me. I'm on my computer. I already logged in with my password. No > one else is logged on. > > I know all you purists out there are rending your garments if not your > flesh. b

Re: Don't try this at home kids

2021-11-29 Thread Darac Marjal
On 29/11/2021 22:41, Jeremy Ardley wrote: > > On 30/11/21 6:25 am, Bob Bernstein wrote: >> How do I tell sudo not to ask me for my password? >> >> It's me. I'm on my computer. I already logged in with my password. No >> one else is logged on. >> >> I know all you purists out there are rending your

Re: Don't try this at home kids

2021-11-29 Thread Jude DaShiell
sudo doesn't ask me for my password and I didn't even touch /etc/sudoers to do it. A file placed in /etc/sudoers.d with permissions of 0440 having any name you choose and contents like: user ALL=(ALL) NOPASSWD:ALL in it with user being the account name will do it. On Tue, 30 Nov 2021, Jeremy Ard

Re: Don't try this at home kids

2021-11-29 Thread Jeremy Ardley
On 30/11/21 6:25 am, Bob Bernstein wrote: How do I tell sudo not to ask me for my password? It's me. I'm on my computer. I already logged in with my password. No one else is logged on. I know all you purists out there are rending your garments if not your flesh. but c'mon sudo! Can't a brot

Don't try this at home kids

2021-11-29 Thread Bob Bernstein
How do I tell sudo not to ask me for my password? It's me. I'm on my computer. I already logged in with my password. No one else is logged on. I know all you purists out there are rending your garments if not your flesh. but c'mon sudo! Can't a brother catch a break around here? Thank you.