checking how to reset sudo and root password on Ubuntu?? 21.04
Ralf Mardorf
kde.lists at yahoo.com
Sat Oct 15 18:24:53 UTC 2022
On Sat, 2022-10-15 at 11:10 -0400, Robert Heller wrote:
> True, *but* with sudo, having a root login is unnecessary and adds a
> *potiental* security risk.
Hi,
In regards to hackers it's just a myth and it was never the reason for
the Ubuntu developers decision.
In regards to user error it makes no difference, too. Assuming a user
want's to change the owner and/or group of /usr/src/ and everything
inside of this directory, an accident can happen. There's no difference
between su and sudo, running
sudo chown --recursive 0:1000 /usr/src/
is wanted, but by accident the user is running
sudo chown --recursive 0:1000 / usr/src/
^--unwanted space
A user who continuously would use a root console, would do it either by
su or by sudo -i.
Btw. on Arch Linux it's possible to run
faillock --user $(id -un) --reset
by the user, IOW without root privileges. Hence after 3 incorrect sudo
password attempts there's no need to wait for security reasons. Right
now I don't have time to test it on Ubuntu.
Regards,
Ralf
More information about the ubuntu-users
mailing list