From: vallor@vallor.earth
At Thu, 22 Jan 2026 10:40:57 +0100, Marc Haber
wrote:
> Lawrence DĀ“Oliveiro wrote:
> >On Wed, 21 Jan 2026 11:19:35 +0100, Marc Haber wrote:
> >> ... and thus the better control possibilities that sudo offers are
> >> moot.
> >
> >There seems to be this feeling that sudo is overly complicated and
>
> That surely is not a very wrong stance. sudo is quite complicated, and
> I would probably have stopped using it (chaning to either runas from
> the BSD universe or run0 from systemd) if I weren't maintaining the
> Debian packages.
>
> Configuring sudo to require the targetpw doesn't help with that AT
> ALL, it just makes things worse.
I agree in the case of multiple users that have to sudo to root...but
I was referring to my machine at home, with only me as a possible
superuser.
If I boot to a recovery console, it needs my root password
anyway, so having that separate would almost seem to make
sense. ;)
>
> >prone to its own ongoing security vulnerabilities.
>
> What are the currently ongoing security vulnerabilities in a current
> sudo? I need to know that.
>
> Greetings
> Marc
--
-v System76 Thelio Mega v1.1 x86_64 Mem: 258G
OS: Linux 6.18.5 D: Mint 22.3 DE: Xfce 4.18 (X11)
NVIDIA GeForce RTX 3090Ti (24G) (580.105.08)
"How come the AT&T logo looks like the Death Star?"
--- SoupGate-Win32 v1.05
* Origin: you cannot sedate... all the things you hate (1:229/2)
|
