Re: As seen above: use of su vs sudo

To: debian-user@lists.debian.org
Subject: Re: As seen above: use of su vs sudo
From: Martin <keine-eile@online.de>
Date: Tue, 7 Aug 2018 15:44:15 +0200
Message-id: <[🔎] f87a5d11-94dd-7b84-640f-7f360af2b2d0@online.de>
In-reply-to: <[🔎] 20180807131720.GE32027@chew.redmars.org>
References: <[🔎] 9494b29f-b9a2-7f3b-be33-0824df53aea3@online.de> <[🔎] 20180807T130923.GA.2f953.stse@fsing.rootsland.net> <[🔎] CAD3_CNPq6eKAMc_wqfS1AOAYcKgo-Bjkimn8PaTKnU07VULESg@mail.gmail.com> <[🔎] slrnpmj1pj.23n.curty@einstein.electron.org> <[🔎] 20180807131720.GE32027@chew.redmars.org>

> I've long forgotten why, but I committed "sudo su -" to muscle memory

First, you execute sudo with target UID 0 (aka. root). 
While doing that, sudo does all the fancy things for you, like setting or unsetting environments (eg SUDO_COMMAND, SUDO_UID, SUDO_USER) and check, if you will be granted to run $ANY_COMMAND or may be /bin/su with that target UID 0.
Next, with UID 0, you run /bin/su in order, to gain a login shell. Now '/bin/su -' runs the login process stripping all the things set before off. Just to run /bin/sh at the end.

You could have run 'sudo -c /bin/sh'.
In reality, 'sudo -i [-u TARGET_USER]' is your friend. Always.

Reply to:

References:
- As seen above: use of su vs sudo
  - From: Martin Drescher <keine-eile@online.de>
- Re: As seen above: use of su vs sudo
  - From: Stephan Seitz <stse+debian@fsing.rootsland.net>
- Re: As seen above: use of su vs sudo
  - From: James Allsopp <jamesaallsopp@googlemail.com>
- Re: As seen above: use of su vs sudo
  - From: Curt <curty@free.fr>
- Re: As seen above: use of su vs sudo
  - From: Jonathan Dowland <jmtd@debian.org>

Prev by Date: Re: As seen above: use of su vs sudo
Next by Date: Re: As seen above: use of su vs sudo
Previous by thread: Re: As seen above: use of su vs sudo
Next by thread: Re: As seen above: use of su vs sudo
Index(es):
- Date
- Thread