From: invalid@invalid.invalid   
      
   c186282  writes:   
   > On 1/20/26 16:43, rbowman wrote:   
   >> Lawrence D’Oliveiro wrote:   
   >>> Yeah, but sudo *is* for running things as root! You think running them   
   >>> via sudo is any better than however else you were thinking of doing   
   >>> those things as root?   
   >>   
   >> Sudo limits the damage.  Become root with 'sudo su -' and you'd   
   >> better not have lapses of attention. I think it was OpenSUSE where if   
   >> you were root the wallpaper turned bright red with round, black bombs   
   >> with smoking fuses.   
   >   
   >   'sudo', as often implemented, is NOT safe. PI-os   
   >   doesn't even ask for yer user PW.   
   >   
   >   You CAN tweak sudoers ... tighten things up a bit,   
   >   but that's more work and, if like me, you never   
   >   use 'visudo', just 'nano', you'd better get the   
   >   syntax right.   
   >   
   >   The alt is to have NO 'sudo'. If you are concerned   
   >   about security then this may be the best and easiest   
   >   path. Open a terminal, 'su', then you need the ROOT   
   >   password.   
      
   In security terms, all these options (su, sudo with password, sudo   
   without password) are largely the same. An attacker who compromises your   
   non-root account can capture any password you enter via it. The password   
   requirement is more like a speedbump than a barrier.   
      
   --   
   https://www.greenend.org.uk/rjk/   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)