[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Emergency mode when root account locked

On Sat 12 Dec 2020 at 20:51:26 +0200, Andrei POPESCU wrote:

> On Sb, 12 dec 20, 22:53:41, Keith Bainbridge wrote:
> > On 12/12/20 7:29 pm, Andrei POPESCU wrote:
> > > > AND run sudo as root, for additional safety
> > > Is this supposed to be ironic? I really can't tell.
> > 
> > 
> > There was a detailed discussion here about sudo being a security issue
> > on our systems. It appears to be default in debian 10, so most of us get
> > it as default. I looked at replacing sudo.
> > 
> > I found an article that explained how to strengthen it by forcing sudo
> > to require root password.
> To my non-native understanding of English "run foo as root" usually 
> means one first gains root privileges (by whatever means) and then runs 
> that program with the elevated privileges.

That is my understanding too.

> In the context of the text you were replying to it seemed to me you 
> might just be ironic (though admittedly I did also consider you might be 
> referring to the 'targetpw' option in 'sudoers').

Keith Bainbridge argument begins with a complete misunderstanding of
the role of sudo in the installer. It then mentions an article that
is not referenced. Two fails.


Reply to: