sudo and /etc/sudoers

Derek Broughton derek at
Mon Dec 29 15:25:40 UTC 2008

Matthew Flaschen wrote:

> Karl F. Larsen wrote:
>>     Yes and it is seldom used.
> How on earth do you know?
>  With a lot of thought, if I was running a
>> Unix computer with many users I would disable sudo, get me a root
>> password, and handle the users with which groups they belong to.
> Except magical groups alone will not let users have limited access to
> root programs, which is of course the whole point.

Let's see:  I can add some group to /etc/sudoers to be able to run some list 
of programs; or, I can change every individual program to be setuid root, 
executable by the group - and do that _every_ time each of those programs 
gets upgraded.  It's nice that Linux gives us so many options :-)

More information about the ubuntu-users mailing list