sudo: always_set_home

David Mandelberg mandelbergd at eth0.is-a-geek.org
Sun Jan 9 14:33:10 CST 2005


I think sudo should be configured by default to have the always_set_home option
set by default. It makes sudo always set $HOME, $UID, etc. to the target user's
values.

pros:
* if I user runs a root shell with sudo and does something like "rm -f
  ~/.ssh/identity" they won't end up deleting the wrong ssh id
* apps that write to ~/.appname won't clutter the user's home directory with
  files owned by root
* confidential files are less likely to be world readable

cons:
* may cause problems with gnome apps, but I've been using it for a few weeks
  without any problems

-- 
-----BEGIN GEEK CODE BLOCK-----
Version: 3.1
GAT/CM$/CS>$/CC/IT$/M/S/O/U dpu s+:++ !a C++$>C+++$
UB+++>++++$L++++$*-- P+>++$ L+++(++++)$ E-(---) W+++>$ N(+) o? K-
w--(---) O? M V? PS++@ PE-@ Y+@ PGP++(+++)>$ t? 5? X? R tv--(-)
b++(+++)@ DI? D? G e->++++ h* r? z*
------END GEEK CODE BLOCK------

David Mandelberg
mandelbergd at eth0.is-a-geek.org
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 256 bytes
Desc: OpenPGP digital signature
Url : http://lists.ubuntu.com/archives/ubuntu-devel/attachments/20050109/9f395fa6/signature.pgp


More information about the ubuntu-devel mailing list