Am 28.03.2012 19:26, schrieb T.C. Hollingsworth: > On Wed, Mar 28, 2012 at 10:19 AM, Joe Zeff <joe@xxxxxxx> wrote: >> On 03/28/2012 08:29 AM, Reindl Harald wrote: >>> >>> on a usual desktop PC with a standard-user it is a VERY bad >>> idea because any attacker only needs to try "sudo anything" >>> to get full control over the machine >> >> >> My thoughts exactly. Except under very unusual circumstances I'm the only >> person who ever uses this PC, but I don't have sudo set up with nopassword. >> In fact, as I know the root password (being the person who installed >> Fedora) I don't have sudo set up at all. AIUI, sudo was written to allow >> people *who don't have the root password* limited access to administrative >> commands. >> >> Yes, I understand that there are times you have to use sudo instead of su in >> a production environment to ensure that everything gets logged, but I've >> never understood why anybody would do it at home. YMMV and all that jazz, >> but if this is a home box, I'd suggest asking yourself why you're bothering >> with sudo in the first place. > > In my case, it's because `sudo yum update` requires 3 less keystrokes > `su -c 'yum update'`. ;-) > > I generally only need root for one-off commands and IMHO sudo's syntax > for that is far nicer than su's. what about a simple shell-script "/usr/local/bin/sudo" as wrapper?
Attachment:
signature.asc
Description: OpenPGP digital signature
-- users mailing list users@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe or change subscription options: https://admin.fedoraproject.org/mailman/listinfo/users Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines Have a question? Ask away: http://ask.fedoraproject.org
