Re: /usr/bin before /usr/local/bin?

To: debian-user@lists.debian.org
Subject: Re: /usr/bin before /usr/local/bin?
From: Hubert Chan <hackerhue@crosswinds.net>
Date: 01 Nov 2000 11:48:34 -0700
Message-id: <[🔎] 87y9z3le9p.fsf@sixpack.math.ualberta.ca>
In-reply-to: William T Wilson's message of "Tue, 31 Oct 2000 20:35:28 -0500 (EST)"
References: <Pine.LNX.4.21.0010312034020.11571-100000@benatar.snurgle.org>

William T Wilson <fluffy@snurgle.org> writes:

> On 31 Oct 2000, Hubert Chan wrote:
> 
> > My sudoers file is basically just
> >   hubert ALL=(ALL) ALL
> 
> This can be extremely convenient.  But it also makes the security of the
> whole system equal to the security of your user account.

Not quite.  It makes my password equivalent to a root password.  And it just so
happens that my root password is the same as my normal account password
anyways.  ;-) Yes, I know it's not the best thing to do, but I can't keep track
of that many passwords.

> If you are worried about security, and you have a situation like this, you
> have to take as much care with your personal account as you would with
> root.  So you must never type passwords unencrypted over the network,
> leave yourself logged in, etc. unless you are sure that the situation is
> secure.

Leaving myself logged in is OK, because sudo asks for my password.  If someone
knew my password so that they could use sudo, they could log into my account
anyways, so I'm not too worried about that.

And no, my password never goes unencrypted over the network. ;-)

Hubert

Reply to:

Follow-Ups:
- Re: /usr/bin before /usr/local/bin? (reality check)
  - From: Ethan Benson <erbenson@alaska.net>

Prev by Date: Re: Kernel modules
Next by Date: Potato does not run the /etc/ppp/ip-up script
Previous by thread: Re: /usr/bin before /usr/local/bin?
Next by thread: Re: /usr/bin before /usr/local/bin? (reality check)
Index(es):
- Date
- Thread