Posted by: Anonymous
[ip: 216.64.80.82]
on June 12, 2008 10:00 PM
I read your blog entry, and am not convinced by your rationalization. If you are running as root, the programs you start, for the most part, run as root (the servers you mentioned which drop privileges being exceptions). If you haven't read and understood the source code, there is still (considerably) more of a risk than if you were running as a non privileged user. I was also puzzled by the following from your blog entry.
"You cannot, as people keep falsely claiming, “sudo su” and so become root. That capability was thought about a long, long time ago and disabled at the source code level. I know this having compiled sudo from source, installed it, and configured it to suit my taste."
I find this EXTREMELY puzzling, since I "sudo su" and become root EVERY DAY on a few machines that I have configured to allow that from my account, and since I am not a programmer, there is no way that I could have re-enabled this at the source code level, even if I wanted to. So when exactly was it disabled?
Learn about Linux
Download Linux
Get Linux help
Re: Puppy Linux 4.00 is barking up the right tree
Posted by: Anonymous [ip: 216.64.80.82] on June 12, 2008 10:00 PM"You cannot, as people keep falsely claiming, “sudo su” and so become root. That capability was thought about a long, long time ago and disabled at the source code level. I know this having compiled sudo from source, installed it, and configured it to suit my taste."
I find this EXTREMELY puzzling, since I "sudo su" and become root EVERY DAY on a few machines that I have configured to allow that from my account, and since I am not a programmer, there is no way that I could have re-enabled this at the source code level, even if I wanted to. So when exactly was it disabled?
#