Re: sudo security Was: Reporting missing package during install

To: Ralf Mardorf <ralf.mardorf@alice-dsl.net>
Cc: debian-user@lists.debian.org
Subject: Re: sudo security Was: Reporting missing package during install
From: "Gian Uberto Lauri" <saint@eng.it>
Date: Wed, 11 Dec 2013 09:39:05 +0100
Message-id: <[🔎] 21160.9385.777825.854047@mail.eng.it>
Reply-to: "Gian Uberto Lauri" <saint@eng.it>
In-reply-to: <[🔎] 1386723931.2211.66.camel@saucy>
References: <[🔎] CAO7q0mn82WxbO_1fL3o1P_X5qz8brA2kZruVb6JG8Nz6LYAZnA@mail.gmail.com> <[🔎] 20131207200143.GJ3239@sid.nuvreauspam> <[🔎] 20131207213630.GB6685@hysteria.proulx.com> <[🔎] 201312090001.50206.lisi.reisz@gmail.com> <[🔎] 21157.31399.63135.88312@mail.eng.it> <[🔎] 20131209094043.GQ3239@sid.nuvreauspam> <[🔎] 21157.37830.879558.114857@mail.eng.it> <[🔎] 20131209164451.GR3239@sid.nuvreauspam> <[🔎] 21157.64035.378332.381679@mail.eng.it> <[🔎] 1386610474.14806.166.camel@archlinux> <[🔎] 21158.50965.22307.269961@mail.eng.it> <[🔎] 1386670510.14806.406.camel@archlinux> <[🔎] 21158.63028.962015.30900@mail.eng.it> <[🔎] 1386676137.23432.15.camel@archlinux> <[🔎] 21159.18357.179948.443165@mail.eng.it> <[🔎] 1386708892.2211.29.camel@saucy> <[🔎] 441F3AF8-E081-4335-90A4-BD750DB85B8B@eng.it> <[🔎] 1386723931.2211.66.camel@saucy>

Ralf Mardorf writes:
 > On Di, 2013-12-10 at 23:54 +0100, Gian Uberto Lauri wrote:
 > > Clever attacks manifest themselves a long time after the "infection" in order
 > > to poison backups. And backup media may fail when they are most needed.
 > > That's an effect of Murphy's law :).
 > 
 > Read about my backup strategy below.

Your strategy seems to do nothing about backup poisoning.

 > Only one time in my life I lost a
 > little bit, because I made a mistake, not because there was an attack. I
 > mounted a partition read/write instead of read only.

That is what I mean "not to trust backup": do not think that you *are*
safe because you have backups, if all goes well a backup will save you
but it is not a magic talisman of invulnerable protection.

Of course no backup spells disaster, and your backup strategy is
excellent.

You got no attack (until now) does not imply you will never get one.
Or maybe that you never noticed one.

People like botnet owners - and these are not script kiddies - do
target anything they can turn into a bot. It is not your data, is
"pwning" your machine. For their revenue.

Back to sudo.

Let's suppose that Debian+Ubuntu get the largest share of the
installed end user desktops.

Then breaking these systems becomes automatically profitable (as for
revenue) and knowing what is the default sudo configuration could make
worthwile researching about exploiting certain weaknesses - last but
not least the fact that a very few of us is continuously paranoid
when using her everyday account.

Maybe I failed expressing that I am not completely against sudo, there
are several good sudo usages and even "caching" the authentication has
its very legitimate uses, and the -k and -K flags help a lot in this,
even if some kind of "start caching now" option could be nice...
Someting to work on...

-- 
 /\           ___                                    Ubuntu: ancient
/___/\_|_|\_|__|___Gian Uberto Lauri_____               African word
  //--\| | \|  |   Integralista GNUslamico            meaning "I can
\/                 coltivatore diretto di software       not install
     già sistemista a tempo (altrui) perso...                Debian"

Warning: gnome-config-daemon considered more dangerous than GOTO

Reply to:

Follow-Ups:
- Re: sudo security Was: Reporting missing package during install
  - From: Ralf Mardorf <ralf.mardorf@alice-dsl.net>
- Re: sudo security Was: Reporting missing package during install
  - From: Joel Rees <joel.rees@gmail.com>

References:
- Reporting missing package during install
  - From: Troy Engel <troyengel@gmail.com>
- Re: Reporting missing package during install
  - From: Andrei POPESCU <andreimpopescu@gmail.com>
- Re: Reporting missing package during install
  - From: Bob Proulx <bob@proulx.com>
- Re: Reporting missing package during install
  - From: Lisi Reisz <lisi.reisz@gmail.com>
- Re: Reporting missing package during install
  - From: "Gian Uberto Lauri" <saint@eng.it>
- Re: Reporting missing package during install
  - From: Andrei POPESCU <andreimpopescu@gmail.com>
- Re: Reporting missing package during install
  - From: "Gian Uberto Lauri" <saint@eng.it>
- Re: Reporting missing package during install
  - From: Andrei POPESCU <andreimpopescu@gmail.com>
- Re: Reporting missing package during install
  - From: "Gian Uberto Lauri" <saint@eng.it>
- Re: Reporting missing package during install
  - From: Ralf Mardorf <ralf.mardorf@alice-dsl.net>
- Re: Reporting missing package during install
  - From: "Gian Uberto Lauri" <saint@eng.it>
- sudo security Was: Reporting missing package during install
  - From: Ralf Mardorf <ralf.mardorf@alice-dsl.net>
- Re: sudo security Was: Reporting missing package during install
  - From: "Gian Uberto Lauri" <saint@eng.it>
- Re: sudo security Was: Reporting missing package during install
  - From: Ralf Mardorf <ralf.mardorf@alice-dsl.net>
- Re: sudo security Was: Reporting missing package during install
  - From: "Gian Uberto Lauri" <saint@eng.it>
- Re: sudo security Was: Reporting missing package during install
  - From: Ralf Mardorf <ralf.mardorf@alice-dsl.net>
- Re: sudo security Was: Reporting missing package during install
  - From: Gian Uberto Lauri <gianuberto.lauri@gmail.com>
- Re: sudo security Was: Reporting missing package during install
  - From: Ralf Mardorf <ralf.mardorf@alice-dsl.net>

Prev by Date: Re: sudo security Was: Reporting missing package during install
Next by Date: Re: udev problem ?
Previous by thread: Re: sudo security Was: Reporting missing package during install
Next by thread: Re: sudo security Was: Reporting missing package during install
Index(es):
- Date
- Thread