sudo versus #

Wed Feb 10 23:54:57 UTC 2010

On Wed, 10 Feb 2010, Rashkae wrote:

> In theory, sudo logs all commands... not really of importance to single
> administrator systems.

ding ding ding ding.. er.. heh {:}  I guess it's important for me to note 
this, for future reference possibly stepping on folks' toes (folks who may 
be my meal ticket)!

>> Also, I notice that when Ubuntu gives me those update dialog boxes my root
>> password doesn't work to allow the installation to go forward.  This makes
>> me irritated, because it instead wants my normal user password, which for
>> me by design is a weaker password that I use for more things and thus
>> could be more easily cracked.  My root password is longer and I use it for
>> less things.  Both are immune to dictionary attack, but it bothers me the
>> way this subverts my configuration.
> The ubuntu gui components use gksudo to elevate privileges.  See the man
> page, since there is a gconf setting as to whether gksudo uses sudo or su.


So I am doing what this guy did..

[:: clip from above web link ::]

I have a problem with Ubuntu GNOME launchers like "Synaptic Package 
Manager" in System menu.
I don't like to use sudo, so a disable sudo and tried to use the launcher 
(with my standard user) but it don't work.

It don't work because Ubuntu uses the link gksudo to use gksu.
A good solution to this is set "sudo-mode = yes" in /etc/gksu.conf and use 
gksu in the launchers. This will have the same effect of gksudo and will 
make  the life of some users "not so hard" giving the chance to disable 
sudo commenting 2 lines in only 2 files: one in /etc/gksu.conf and other 
in /etc/sudoers.

[:: end clip ::]

[:: clip from my nicely configured superuser command line ::]

root at kayve-laptop:/etc# vi gksu.conf
root at kayve-laptop:/etc# cat /etc/gksu.conf
sudo-mode = yes
root at kayve-laptop:/etc#

root at kayve-laptop:/etc# cat sudoers
# /etc/sudoers
# This file MUST be edited with the 'visudo' command as root.
# See the man page for details on how to write a sudoers file.

Defaults	env_reset

# Host alias specification

# User alias specification

# Cmnd alias specification

# User privilege specification
root	ALL=(ALL) ALL

# Uncomment to allow members of group sudo to not need a password
# (Note that later entries override this, so you might need to move
# it further down)

# Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL
root at kayve-laptop:/etc#

[:: end clip ::]

I guess I am a little confused now.  What I want to do is change the 
password the Gnome-based update thingies reminiscent of AOL or Microsoft 
updates from my user password to the root password, but if I comment out 
that line then I think it will change it to no password?

> -- 
> ubuntu-users mailing list
> ubuntu-users at
> Modify settings or unsubscribe at:

   Kayven Riese, BSCS, MS (Physiology and Biophysics)
   (415) 902 5513 cellular

More information about the ubuntu-users mailing list