Well, I often need a root shell. Usually I login as a user in group wheel, but not operator! The perils of group operator were explained in a previous thread. I don't use that group anymore.
As I understand, nothing like a web browser, etc. should ever be used by root. So I don't. I have been using doas su -l to get a root shell, while using those other programs as the original user. I never use ssh from the root shell. Am I doing something unsafe here? Should I NOT open the root shell and only execute each command with doas? That's easy to do also. A third choice is actually to login as root directly. Does having a root shell open continously, but only when using it, cause me to have a significant security risk? It's convienent, but not necessary. And there was that tty security problem that came up in another thread. I've been meaning to ask this question, seems like a good thread to ask it in. Things have changed significantly recently, so I feel a little unsure how things stand now. Thanks, Chris Bennett
