On Tue, Apr 11, 2017 at 01:34:19PM +0200, Alessandro Selli wrote: [cut]
> One cannot avoid using at least once his own password at the start of the > session, so this password cannot be completely secured when operating in an > open or unprotected environment. If need arises to perform, in that same > environment, a task that requires root privileges, then sudo is the easiest > way to perform that task without exposing the superuser's password at all. > OK, but you would agree that, if you find yourself in such an "unprotected enviroment", there is not much difference between typing the root password and typing the password of a user who can become root by "sudo su". No automagic can replace a reasonable behaviour, especially when it comes to security. The worst aspect of sudo is that it has deluded users in thinking that the sudo-way is "more secure". Which is totally BS (I mean Brutally Simplistic, obviously). HND KatolaZ -- [ ~.,_ Enzo Nicosia aka KatolaZ - GLUGCT -- Freaknet Medialab ] [ "+. katolaz [at] freaknet.org --- katolaz [at] yahoo.it ] [ @) http://kalos.mine.nu --- Devuan GNU + Linux User ] [ @@) http://maths.qmul.ac.uk/~vnicosia -- GPG: 0B5F062F ] [ (@@@) Twitter: @KatolaZ - skype: katolaz -- github: KatolaZ ]
signature.asc
Description: Digital signature
_______________________________________________ Dng mailing list [email protected] https://mailinglists.dyne.org/cgi-bin/mailman/listinfo/dng
