sudo versus #
KAYVEN RIESE
kayve at sfsu.edu
Wed Feb 10 23:54:57 UTC 2010
On Wed, 10 Feb 2010, Rashkae wrote:
> KAYVEN RIESE wrote:
>
> In theory, sudo logs all commands... not really of importance to single
> administrator systems.
ding ding ding ding.. er.. heh {:} I guess it's important for me to note
this, for future reference possibly stepping on folks' toes (folks who may
be my meal ticket)!
>
>>
>> Also, I notice that when Ubuntu gives me those update dialog boxes my root
>> password doesn't work to allow the installation to go forward. This makes
>> me irritated, because it instead wants my normal user password, which for
>> me by design is a weaker password that I use for more things and thus
>> could be more easily cracked. My root password is longer and I use it for
>> less things. Both are immune to dictionary attack, but it bothers me the
>> way this subverts my configuration.
>>
>
> The ubuntu gui components use gksudo to elevate privileges. See the man
> page, since there is a gconf setting as to whether gksudo uses sudo or su.
>
>
::sigh::
OK
https://bugs.launchpad.net/ubuntu/+source/gksu/+bug/15094
So I am doing what this guy did..
[:: clip from above web link ::]
I have a problem with Ubuntu GNOME launchers like "Synaptic Package
Manager" in System menu.
I don't like to use sudo, so a disable sudo and tried to use the launcher
(with my standard user) but it don't work.
It don't work because Ubuntu uses the link gksudo to use gksu.
A good solution to this is set "sudo-mode = yes" in /etc/gksu.conf and use
gksu in the launchers. This will have the same effect of gksudo and will
make the life of some users "not so hard" giving the chance to disable
sudo commenting 2 lines in only 2 files: one in /etc/gksu.conf and other
in /etc/sudoers.
[:: end clip ::]
[:: clip from my nicely configured superuser command line ::]
root at kayve-laptop:/etc# vi gksu.conf
root at kayve-laptop:/etc# cat /etc/gksu.conf
sudo-mode = yes
root at kayve-laptop:/etc#
root at kayve-laptop:/etc# cat sudoers
# /etc/sudoers
#
# This file MUST be edited with the 'visudo' command as root.
#
# See the man page for details on how to write a sudoers file.
#
Defaults env_reset
# Host alias specification
# User alias specification
# Cmnd alias specification
# User privilege specification
root ALL=(ALL) ALL
# Uncomment to allow members of group sudo to not need a password
# (Note that later entries override this, so you might need to move
# it further down)
# %sudo ALL=NOPASSWD: ALL
# Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL
root at kayve-laptop:/etc#
[:: end clip ::]
I guess I am a little confused now. What I want to do is change the
password the Gnome-based update thingies reminiscent of AOL or Microsoft
updates from my user password to the root password, but if I comment out
that line then I think it will change it to no password?
>
> --
> ubuntu-users mailing list
> ubuntu-users at lists.ubuntu.com
> Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-users
>
*----------------------------------------------------------*
Kayven Riese, BSCS, MS (Physiology and Biophysics)
(415) 902 5513 cellular
http://kayve.net
Webmaster http://ChessYoga.org
*----------------------------------------------------------*
More information about the ubuntu-users
mailing list