Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

On Fri, May 22, 2009 at 09:45:05PM +, Glyn Astill wrote: > > 'ALL=(ALL) ALL' is no more dangerous than having the 'su' binary > > available. > > > > The NOPASSWD option is not the default. > > No. For su they'd have to enter the root password, for sudo su they'd > just have to enter the passw

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

On 2009-05-22_18:19:19, dwain wrote: > On Fri, May 22, 2009 at 6:09 PM, Douglas A. Tutty wrote: > Hi, dwain I went back in the archives and read your original post. It is pretty clear to me from that post that you are a single user working on your own computer. There is no sysadmin to help or

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

On Fri, May 22, 2009 at 6:19 PM, dwain wrote: > > > On Fri, May 22, 2009 at 6:09 PM, Douglas A. Tutty wrote: >> >> > i too was disappointed.  i tried su and authentication failed.  how do i >> > update my system without being able to log in as root? >> > >> > now i don't mind a spirited discussio

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

On Fri, May 22, 2009 at 07:09:17PM -0400, Douglas A. Tutty wrote: > On Fri, May 22, 2009 at 05:50:28PM -0500, dwain wrote: > > On Fri, May 22, 2009 at 2:16 PM, George wrote: > > [snip] > > A last resort would be: > > 1.physically disconnect the box from the network. > 2.boot a live CD

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

On Fri, May 22, 2009 at 6:09 PM, Douglas A. Tutty wrote: > > i too was disappointed. i tried su and authentication failed. how do i > > update my system without being able to log in as root? > > > > now i don't mind a spirited discussion on the pros and cons of sudo vs. > su, > > but my origina

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

On Fri, May 22, 2009 at 05:50:28PM -0500, dwain wrote: > On Fri, May 22, 2009 at 2:16 PM, George wrote: > > > I was a little disappointed being called out on my suggestions in my > > original post. Obviously the person isn’t a sys admin and from my > > understanding the whole purpose of sudo is s

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

On Fri, May 22, 2009 at 2:16 PM, George wrote: > I was a little disappointed being called out on my suggestions in my > original post. Obviously the person isn’t a sys admin and from my > understanding the whole purpose of sudo is so the user only has root > privileges for that given command inst

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

In Friday 22 May 2009, Glyn wrote: >--- On Fri, 22/5/09, Boyd Stephen Smith Jr. wrote: >> Glyn Astill wrote: >> > ALL=(All) ALL is a bad idea. >> >> Um, no. With 'ALL=(ALL) ALL' they would still have to >> type in their >> password unless they had recently given their >> credentials. If you want

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

--- On Fri, 22/5/09, Boyd Stephen Smith Jr. wrote: > From: Boyd Stephen Smith Jr. > Subject: Re: sudo vs. su (was Re: new to list, new to debian, new to linux) > To: debian-user@lists.debian.org > Date: Friday, 22 May, 2009, 9:20 PM > In <857394.80354...@web23608.mail.ird.

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

In <857394.80354...@web23608.mail.ird.yahoo.com>, Glyn Astill wrote: >--- On Fri, 22/5/09, Boyd Stephen Smith Jr. wrote: >> It's not equivalent to running as root, since (a) you have >> to prefix >> privileged operations with "sudo", (b) you have to re-auth >> such actions by >> entering your pass

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

--- On Fri, 22/5/09, Boyd Stephen Smith Jr. wrote: > From: Boyd Stephen Smith Jr. > Subject: Re: sudo vs. su (was Re: new to list, new to debian, new to linux) > To: debian-user@lists.debian.org > Date: Friday, 22 May, 2009, 8:14 PM > In <20090522183807.ga16...@marksh

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

In <78582fa40905221202r3efedabege566a47c61144...@mail.gmail.com>, S Scharf wrote: >On Fri, May 22, 2009 at 2:38 PM, Mark Shroyer < >subscriber+deb...@markshroyer.com >wrote: >> It *would* be safer to use neither su nor sudo, and only have root log >> in on a separate, secure console, thereby elim

RE: sudo vs. su (was Re: new to list, new to debian, new to linux)

>From: S Scharf [mailto:ss11...@gmail.com] >Sent: Friday, May 22, 2009 3:03 PM >To: debian-user@lists.debian.org >Subject: Re: sudo vs. su (was Re: new to list, new to debian, new to linux) >On Fri, May 22, 2009 at 2:38 PM, Mark Shroyer >wrote: >It *would* be safer to us

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

In <20090522183807.ga16...@markshroyer.com>, Mark Shroyer wrote: >On Fri, May 22, 2009 at 06:56:18AM -0700, Thorny wrote: >> You've just advised an obvious newbie (stated in post) on how to make >> his system insecure. Giving ALL=(All) ALL rights to a normal user is >> pretty much the same as runni

Re: sudo vs. su (was Re: new to list, new to debian, new to linux)

On Fri, May 22, 2009 at 2:38 PM, Mark Shroyer < subscriber+deb...@markshroyer.com >wrote: > > It *would* be safer to use neither su nor sudo, and only have root log > in on a separate, secure console, thereby eliminating the possibility of > password sniffing from a compromised regular account. H