this post was submitted on 03 May 2024
32 points (78.6% liked)

Linux

48181 readers
1308 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS
all 17 comments
sorted by: hot top controversial new old
[–] [email protected] 16 points 6 months ago (2 children)

I feel like an important thing he forgot to mention though is that it lets you allow multiple users to have root privileges without having to share passwords or SSH keys

[–] [email protected] 24 points 6 months ago (1 children)

Why would they need to share ssh keys? Ssh will happily accept dozens of allowed keys.

[–] [email protected] 2 points 6 months ago

Oh true yeah I always forget about that

[–] [email protected] 7 points 6 months ago

Indeed useful to not having to share passwords. I think sudo historically started as a way to let some users in a company for example manage printer server settings without having a root password. (And I believe it was Ubuntu in 2004 which promoted sudo and forced the default user after an installation to use sudo to perform root commands).

[–] [email protected] 14 points 6 months ago (1 children)

Somebody call the Wahhhmbulance. This guy is outmoded. How about expanded security permissions for small groups of people in a larger directory? How about PAM auth plugins? How about escalation preventiontion for those same people, PLUS auditing instead of just seeing "root did something dumb".

I don't even get why this gent even bothered to wine and complain about this except that he doesn't "get it". This has been a solved issue for over 20 years now, and you don't see large swathes of folks bitching and moaning about sudo at all.

[–] [email protected] 14 points 6 months ago (1 children)

If you need to provide tools that cross security boundaries then [...] a small web app is better [than sudo].

A web app? Effin really!!? 🤨

[–] [email protected] 11 points 6 months ago

This is the part that confused me most. At the first mention of web apps, I just thought, okay, if you have a web server you can have it run under a service account that can do what it needs to do. Sure. Kind of beside the point, but sure.

Then this came at the end and and I did a double-take. He's really suggesting a web app as a substitute for sudo in general? Two questions:

  1. Wat?
  2. Wut?