Another reason to prefer a real root over sudo
Bart Silverstrim
bsilver at chrononomicon.com
Wed Feb 4 14:17:49 UTC 2009
Chris G wrote:
>> I thought part of the good thing with sudo is that programs can't try
>> doing admin-level fubaring without prompting you. With root things do
>> what they want when they want and never prompt because the privileges
>> are already there.
>>
> That's why root prompts are different, and red if you want. Different
> protection but as long as you're looking at the screen it's there.
>
> With sudo you only enter the password once so, once in the swing,
> you're quite likely to happily type "sudo <something awful>" without
> thinking.
For a limited period of time (like the OS X implementation) and
everything is logged, unless you are wiping the logs.
Which...as was probably mentioned in a recent blah blah waa over
security on the list in another thread...if you're in need of that kind
of security, you really would already have a specialized log server
running which everything remotely mirrors your logging to.
More information about the ubuntu-users
mailing list