Linked by Thom Holwerda on Tue 28th Feb 2012 23:11 UTC
Linux Linus Torvalds on requiring the root password for mundane tasks. "So here's a plea: if you have anything to do with security in a distro, and think that my kids (replace 'my kids' with 'sales people on the road' if you think your main customers are businesses) need to have the root password to access some wireless network, or to be able to print out a paper, or to change the date-and-time settings, please just kill yourself now. The world will be a better place." Yes, it's harsh (deal with it, Finns don't beat around the bush), but he's completely and utterly right. While there's cases where it makes sense to disable certain settings (public terminals, for instance), it is utterly idiotic that regular home users have to type in their root password for such mundane tasks.
Thread beginning with comment 508841
To read all comments associated with this story, please click here.
changing security manually
by stabbyjones on Wed 29th Feb 2012 00:02 UTC
stabbyjones
Member since:
2008-04-15

I've never looked into it as i don't manage Linux professionally but shouldn't there be a way of assigning users the ability to do these things?

It might not be simple but there has to be a way of assigning users/groups access to the required privileges.
Personally I've never had to look at this because i maintain my own systems so i know the root password.
But I'd have thought that that's what users and groups was for in the very least.

EDIT: (http://wiki.debian.org/SystemPrinting#Add_Printer)

and adding a printer via the Administration screen. If you get a permission error, try adding yourself to the group lpadmin. E.g. if you are user "tom":

sudo usermod -a -G lpadmin tom

Edited 2012-02-29 00:09 UTC

Reply Score: 6

RE: changing security manually
by stestagg on Wed 29th Feb 2012 00:16 in reply to "changing security manually"
stestagg Member since:
2006-06-03

If you need to become root to allow yourself to not become root to configure your printer, then your distro has failed ;)

Reply Parent Score: 6

stabbyjones Member since:
2008-04-15

Not if by default everyone is added to the lpadmin group. which is probably what Linus is complaining about.

Whether you want to allow or disallow something will require root but once deployed should be okay. you can give the users group access instead of a single user.

http://fai-project.org/

Smart admins do the customising before the user gets a hold of something. ;)

Reply Parent Score: 3

RE: changing security manually
by Soulbender on Wed 29th Feb 2012 04:29 in reply to "changing security manually"
Soulbender Member since:
2005-08-18

I've never looked into it as i don't manage Linux professionally but shouldn't there be a way of assigning users the ability to do these things?


Yes, it's called sudo. It's simple to configure sudo so that password is not required for certain tasks.

Reply Parent Score: 3