Ken Moffat wrote: > On Tue, Jul 10, 2012 at 04:51:42PM -0700, Fernando de Oliveira wrote: >> >> >> Thank you very much, Armin. >> >> I think sudo would only ask for the PW once, given the time it takes for >> each pass through the loop. >> >> I myself do these as root.
> I too run my scripts as root - but I'm thinking about 'su lfs' for > the next version. Whatever, I'm decidedly uneasy about requiring > 'sudo' to run what is in the books - it's had so many vulnerabilities > over the years. su could be used, but requires a password every time, unless you completely remove the root password! I use User_Alias ADMIN = bdubbs ADMIN ALL = NOPASSWD: ALL so I can't see what vulnerability would be. Since I'm the only user of the system, I use sudo to do root type of things. For instance, I have alias svi='sudo vi'. That way I consciously have to do something as root. It just prevents accidents. Security is somewhat personal. Each one has to decide the tradeoff between convenience and security. There is no perfect security. I would do things differently on an organization's system where multiple people have access. -- Bruce -- http://linuxfromscratch.org/mailman/listinfo/blfs-dev FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
