Control: tags -1 + moreinfo Hi Martin Steigerwald,
On Mon, Aug 06, 2018 at 10:39:54AM +0200, Martin Steigerwald wrote: > Dear Andreas, dear Ted. > > Andreas, Ted provided an explanation that I can go with. I quickly skimmed the upstream thread. > I understand that you wrote quite something in NEWS.Debian already. I > lower the priority of the report to wishlist. It may still help to > explain it to users a bit more carefully. But as I know some of the > reasons now, I am fine with it either way. I only documented changed behavior in NEWS. I have no intention to document long-standing best practises in detail in that file as it does not belong in a NEWS file. I quickly mentioned 'su' vs 'su -' as a hint for people to read up as many people still seem to be unknowing of the difference. I think a better place to document this is as Ted already suggested in some generic handbook. > > I bet I will go with configuring sudo to take over SSH agent environment > variables to the root session. As this is on my laptop, I think I > configure sudo to demand to root password instead of the user´s one. IMHO sudo should always be preferred over su anyway (but I even left that detail out of the NEWS file as I didn't think it belonged there either). FYI debian installer will lock your root account if you leave the root password field empty and install+configure sudo for your user. Please lock your root account today and stop using su. If you think it's annoying to type sudo in front of every command, use sudo -i. Please feel free to try to convince debian-boot that the root-password prompt in d-i should be changed to 'expert' level (and thus not shown by default) to promote this behavior even more (similar to how ubuntu already does). Please summarize (in 2 or less sentences or I won't have time to read) what you still thinks needs to be done in util-linux package to close this bug report! As things currently stand I'm leaning towards tagging this wontfix and close the bug report because u-l is IMO not the place to document generic sysadmin best practises. Regards, Andreas Henriksson
