Linked by Thom Holwerda on Tue 28th Feb 2012 23:11 UTC
Linux Linus Torvalds on requiring the root password for mundane tasks. "So here's a plea: if you have anything to do with security in a distro, and think that my kids (replace 'my kids' with 'sales people on the road' if you think your main customers are businesses) need to have the root password to access some wireless network, or to be able to print out a paper, or to change the date-and-time settings, please just kill yourself now. The world will be a better place." Yes, it's harsh (deal with it, Finns don't beat around the bush), but he's completely and utterly right. While there's cases where it makes sense to disable certain settings (public terminals, for instance), it is utterly idiotic that regular home users have to type in their root password for such mundane tasks.
Thread beginning with comment 509215
To view parent comment, click here.
To read all comments associated with this story, please click here.
Soulbender
Member since:
2005-08-18

I've seen people enable sshd on root accounts without using a key


This is not a sudo problem and does not mean sudo is not suitable for servers. It's an admin competence issue.

Like any tool, sudo can be used correctly but unfortunately people don't use it this way. Just because you setup your server competently doesn't mean it's common.


So what? Again, this is not a problem with sudo but with incompetent/inexperienced admins. Using root password instead of sudo doesn't save you from this.

No LDAP. I'm thinking web hosting, virtual private servers and small shops


Most of those systems usually run something like sogo or iredmail and most of those mail systems does not use system accounts. I still say most mail servers does not use system accounts for mail access.

I used to work for hosting companies.

So did I.

Reply Parent Score: 4

laffer1 Member since:
2007-11-09

You seem to misunderstand what I'm saying. I'm arguing against using sudo by default on server platforms. I don't hate sudo. In fact, I've included it in my operating system. I don't think sudo itself is the problem, but rather how people talk about it. It implies a certain type of setup and use case that most people don't realize.

There are more incompetent system administrators than competent ones. It's a fact of life.

Reply Parent Score: 1