Security of using sudo rather than su?
Alexander Skwar
listen at alexander.skwar.name
Sun Sep 17 17:02:41 UTC 2006
ยท Karl Auer <kauer at biplane.com.au>:
> On Sun, 2006-09-17 at 14:53 +0200, Alexander Skwar wrote:
>> > Security isn't just about cracked passwords. Security is about avoiding
>> > damage, whether intentional, malicious or accidental. Requiring sudo
>> > reduces the chances that a command will accidentally be carried out as
>> > root.
>>
>> Uhm, no. As you can easily see on this list, a *lot* of suggestions/tipps
>> involve using sudo, even if it's not required.
>
> Uhm, yes! Requiring sudo DOES reduce the chances that a command will
> accidentally be carried out as root. Whether incorrect suggestions are
> made or not. If you don't see it that way, I'd be interested in your
> explanation of why requiring sudo DOES NOT reduce the chances.
It leads to a too careless use of sudo and running commands with
root (sudo) even if that's not required.
Alexander Skwar
--
There is only one way to be happy by means of the heart -- to have none.
-- Paul Bourget
More information about the ubuntu-users
mailing list