Path: csiph.com!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail
From: Andy Burns <usenet@andyburns.uk>
Newsgroups: comp.os.linux.misc
Subject: Re: Yet Another New systemd Feature
Date: Mon, 6 May 2024 20:08:09 +0100
Lines: 12
Message-ID: <l9so4sFbj9uU2@mid.individual.net>
References: <v1941f$24d4m$1@dont-email.me> <v1a0j2$2eb40$1@dont-email.me> <l9ris7F74e0U1@mid.individual.net> <v1ac52$2gs3r$2@dont-email.me>
Mime-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
X-Trace: individual.net xuAT0erW2yE9cqp7S6jY3gERpMvIaSZWFMxslCZtcGqb4+mKjB
Cancel-Lock: sha1:HyvjKfXVfR8cz4x+8v+Z1IDLAwE= sha256:y2QIfaoo5/B4myTy7G5/jm92+X9IzaKRJto8UhYH9Fo=
User-Agent: Mozilla Thunderbird
Content-Language: en-GB
In-Reply-To: <v1ac52$2gs3r$2@dont-email.me>
Xref: csiph.com comp.os.linux.misc:56274

The Natural Philosopher wrote:

> For casual personal use to do one thing, sudo is fine.

AFAIR, /usr/bin/sudo is a 'sticky' binary owned by root, so it 
immediately gets root access, better hope nobody finds a way to abuse 
that before it's decided whether or not to let you do what you asked it.

> For specific tasks by users on a multiuser machine sudo is well controlled

I've encountered plenty, not so well controlled, where all it takes is 
"sudo su -"