Linked by Thom Holwerda on Tue 28th Feb 2012 23:11 UTC
Linux Linus Torvalds on requiring the root password for mundane tasks. "So here's a plea: if you have anything to do with security in a distro, and think that my kids (replace 'my kids' with 'sales people on the road' if you think your main customers are businesses) need to have the root password to access some wireless network, or to be able to print out a paper, or to change the date-and-time settings, please just kill yourself now. The world will be a better place." Yes, it's harsh (deal with it, Finns don't beat around the bush), but he's completely and utterly right. While there's cases where it makes sense to disable certain settings (public terminals, for instance), it is utterly idiotic that regular home users have to type in their root password for such mundane tasks.
Thread beginning with comment 508840
To view parent comment, click here.
To read all comments associated with this story, please click here.
RE: The opposite is also true...
by No it isnt on Tue 28th Feb 2012 23:58 UTC in reply to "The opposite is also true..."
No it isnt
Member since:
2005-11-14

Wow, you completely do not understand the purpose of sudo or how it works. If you don't want a user to be able to use sudo, don't place the user in the sudoers list. Anyone in that list is by definition a privileged user (a sudoer), so sudo does in fact require a privileged username and password.

Reply Parent Score: 13

Delgarde Member since:
2008-08-19

Wow, you completely do not understand the purpose of sudo or how it works. If you don't want a user to be able to use sudo, don't place the user in the sudoers list. Anyone in that list is by definition a privileged user (a sudoer), so sudo does in fact require a privileged username and password.


It's been a while since I did a clean install of either, but I believe the default configuration of both Ubuntu and Fedora is for users to "sudo anything", using their own password for authentication. Easily changed, but it *is* the default.

Reply Parent Score: 2

flynn Member since:
2009-03-19

It's been a while since I did a clean install of either, but I believe the default configuration of both Ubuntu and Fedora is for users to "sudo anything", using their own password for authentication. Easily changed, but it *is* the default.

That's the way it should be. sudoers are special users, but they are not root, they should not know or require the root password. They should use their own password.

Reply Parent Score: 2

AdamW Member since:
2005-07-06

Fedora's default configuration is different from Ubuntu's, we do not set up sudo out of the box. We *do* use PolicyKit for privilege escalation for some purposes, and PK is extremely powerful and flexible and can be set up so it 'works like sudo' for some operations - i.e. allows some or all 'normal users' to perform certain operations by entering their own password, not root's.

Edited 2012-02-29 02:38 UTC

Reply Parent Score: 4