I came across a number of things that seemed to be bad ideas, and some
where others were leaping for the keyboard to post warnings.
I thought about the problems that might take place with the method I
mentioned, and I was going to circumvent what you've said by deleting myself
from the ROOT group after the file was edited.
Now I have a pointed question: The vast majority of the online
suggestions had you typing in all sorts of UNIX commands, but they did not say
where or how. If this was a Windows environment I would use a DOS shell or a
command console, depending on the level. How do you acomplish this with Linux?
DOS minds want to know.
I'm being very cautious with this as this is a new environment for me, but
I want to learn about it as I'm told that Linux is "safer" than windows, giving
you a pseudo Apple system with a Windows interface.
I am, after all, a DOS mentality in a Win10 world.
And the price is right. :{)
>
>Allowing a user-level login to have root permissions/access without a
>conscious privelege escalation is a Really Bad Idea(tm). This lack of
>privelege separation is why some OSs are so vulnerable to attack from
>viruses etc. There should be comments in the blog that say that :) It's
>less of a problem if you're the only user, but it's "not the done
>thing".
>
>I imagine you have 2 options.
>
>1: login as root and edit the files (you'd need the root account
>password) though this option may be locked out by policy on the system
>
>2: login as normal and use sudo for priv escalation. I think this is
>the preferred option in the linux world.
>
>"sudo nano fred.conf" (assuming nano is your editor of choice, and
>fred.conf is the file to edit). using it like this means that the
>current commend is executed with higher prevelege, but you are returned
>to normal on completion. I read you can get a superuser shell with "sudo
>-i" which allows you to operate in a priv-escalated environment.
>
>sudo is "s(uper)u(ser-)do", so sudo should be pronounced ess-you-doo..
>(now THAT'S going to start a big fight, so I'll get back under my bridge
>now* :) )
>
--
_________________________________________________________________
Options: http://lists.thomasclausen.net/mailman/listinfo/olympus
Archives: http://lists.thomasclausen.net/mailman/private/olympus/
Themed Olympus Photo Exhibition: http://www.tope.nl/
|