Re: Emergency mode when root account locked
On Sat 12 Dec 2020 at 20:51:26 +0200, Andrei POPESCU wrote:
> On Sb, 12 dec 20, 22:53:41, Keith Bainbridge wrote:
> > On 12/12/20 7:29 pm, Andrei POPESCU wrote:
> > > > AND run sudo as root, for additional safety
> > > Is this supposed to be ironic? I really can't tell.
> > There was a detailed discussion here about sudo being a security issue
> > on our systems. It appears to be default in debian 10, so most of us get
> > it as default. I looked at replacing sudo.
> > I found an article that explained how to strengthen it by forcing sudo
> > to require root password.
> To my non-native understanding of English "run foo as root" usually
> means one first gains root privileges (by whatever means) and then runs
> that program with the elevated privileges.
That is my understanding too.
> In the context of the text you were replying to it seemed to me you
> might just be ironic (though admittedly I did also consider you might be
> referring to the 'targetpw' option in 'sudoers').
Keith Bainbridge argument begins with a complete misunderstanding of
the role of sudo in the installer. It then mentions an article that
is not referenced. Two fails.