[LBo] Passwords on Linux.
Carl-Adam Brengesjo
ca.brengesjo at telia.com
Tue Jun 13 23:04:41 CEST 2006
Though this may be exactly what you try to "combat", it is better,
security-wise, to run *each* *single* root command via su or sudo.
This is merely because if you keep being logged in as root in a console,
you may accidentally run a command as super user instead of normal user,
having catastrophically effects.
The "password mess" you refer to, may be exactly this. Having to re-type
the password over, and over again. But I just want to remind you that
that feature exists to protect YOU from doing MISTAKES.
Although I realize that you may not even use Linux on a every-day basis,
having Windows on a second partition, it is still bad practice;
creating bad habits.
Personally, when I have installed a new linux system; the first thing I
do is add a new, normal, user; configuring sudo to accept that new user,
and then logout as root and in as the normal user. To then do all
post-installation tasks via sudo.
Too many times have I screwed something up because I didn't check
carefully enough in which session I was and doing stupid stuff.
Of course, I can still make mistakes thru sudo. But at least it
minimizes the chances of that happening.
Again, just wanted to remind you of why those, password requiring,
features exist.
Lonnie Mullenix wrote:
> Lynn,
>
> What I, and several others do to help combat the password mess is to log
> into one terminal as root and a second a normal user. Or, in the case
> of using SuSE, be your normal user and use Ctrl-Alt-F1 to get to a
> terminal window and log in there as root. Then, when you need to do
> something as root, Ctrl-Alt-F1 and you are root, and Alt-F7 and you are
> back to your normal user.
>
> The problem with this being that you either use 'mc' and command line
> stuff or waste a LOT of system resources opening a second X session.
>
> Lonnie
More information about the QnA
mailing list