Re: sudo fails to save IPTables rules

On Mon, Dec 23, 2024 at 9:05 PM Greg Wooledge wrote: > On Mon, Dec 23, 2024 at 20:48:12 -0500, Dan Purgert wrote: > > On Dec 23, 2024, Timothy M Butterworth wrote: > > > sudo fails with a permission denied error. > > > tmb@hp-debian:~$ sudo /usr/sbin/iptables-save > /etc/iptables/rules.v4 > > > b

Re: sudo fails to save IPTables rules

Hi, On 23 Dec 2024 at 20:56:14, Greg Wooledge wrote: > On Mon, Dec 23, 2024 at 20:48:12 -0500, Dan Purgert wrote: > > On Dec 23, 2024, Timothy M Butterworth wrote: > > > sudo fails with a permission denied error. > > > tmb@hp-debian:~$ sudo /usr/sbin/iptables-save > /etc/iptables/rules.v4 > > > b

Re: sudo fails to save IPTables rules

On Mon, Dec 23, 2024 at 20:48:12 -0500, Dan Purgert wrote: > On Dec 23, 2024, Timothy M Butterworth wrote: > > sudo fails with a permission denied error. > > tmb@hp-debian:~$ sudo /usr/sbin/iptables-save > /etc/iptables/rules.v4 > > bash: /etc/iptables/rules.v4: Permission denied > > "sudo" only m

Re: sudo fails to save IPTables rules

On Dec 23, 2024, Timothy M Butterworth wrote: > sudo fails with a permission denied error. > tmb@hp-debian:~$ sudo /usr/sbin/iptables-save > /etc/iptables/rules.v4 > bash: /etc/iptables/rules.v4: Permission denied "sudo" only modifies "iptables-save", and not the redirect (it happens as your user,

Re: sudo question

On Fri, Nov 22, 2024 at 15:25:49 -0500, Roy J. Tellason, Sr. wrote: > Why would you want to append to a file that some other program is also > writing to? Sounds messy... Opening a file in append mode has the following behavior: O_APPEND The file is opened in append mode

Re: sudo question

On Thursday 21 November 2024 02:16:48 pm Greg Wooledge wrote: > On Thu, Nov 21, 2024 at 19:55:04 +0100, to...@tuxteam.de wrote: > > On Thu, Nov 21, 2024 at 06:44:37PM +, Darac Marjal wrote: > > > > [...] > > > > > If it helps, "sponge" (in the moreutils package) seems to offer the right > > >

Re: sudo question

On Thu, Nov 21, 2024 at 02:16:48PM -0500, Greg Wooledge wrote: > On Thu, Nov 21, 2024 at 19:55:04 +0100, to...@tuxteam.de wrote: > > On Thu, Nov 21, 2024 at 06:44:37PM +, Darac Marjal wrote: > > > > [...] > > > > > If it helps, "sponge" (in the moreutils package) seems to offer the right > >

Re: sudo question

On Thu, Nov 21, 2024 at 19:55:04 +0100, to...@tuxteam.de wrote: > On Thu, Nov 21, 2024 at 06:44:37PM +, Darac Marjal wrote: > > [...] > > > If it helps, "sponge" (in the moreutils package) seems to offer the right > > interface here: > > [...] > > Oh, wow -- thanks for that little gem! For

Re: sudo question

On Thu, Nov 21, 2024 at 06:44:37PM +, Darac Marjal wrote: [...] > If it helps, "sponge" (in the moreutils package) seems to offer the right > interface here: [...] Oh, wow -- thanks for that little gem! Cheers -- t signature.asc Description: PGP signature

Re: sudo question

On Thu, Nov 21, 2024 at 01:35:15PM +0100, to...@tuxteam.de wrote: On Thu, Nov 21, 2024 at 07:22:53AM -0500, g...@wooledge.org wrote: On Thu, Nov 21, 2024 at 09:48:06 +0100, to...@tuxteam.de wrote: [...] > My favourite is actually "sudo dd of=" it hasn't the side effect > of flooding your std

Re: sudo question

On 2024-11-21 20:15, Greg Wooledge wrote: On Thu, Nov 21, 2024 at 08:14:35 +0100, Erwan David wrote: On Thu, Nov 21, 2024 at 07:39:33AM CET, Bitfox said: > > BTW, what’s the difference between [[ ]] and [ ] here? I know only the > latter. IIRC, [[ ]] is a bash/zsh builtin, [ ] is /bin/[ other

Re: sudo question

g...@wooledge.org (12024-11-21): > Checking my local Debian man pages now, however, I see that Debian's dd > (GNU coreutils) *does* offer an append option. > > dd oflag=append conv=notrunc of="$file" > > So I guess that's another viable choice, as long as your target system > has GNU coreutil

Re: sudo question

On Thu, Nov 21, 2024 at 07:22:53AM -0500, g...@wooledge.org wrote: > On Thu, Nov 21, 2024 at 09:48:06 +0100, to...@tuxteam.de wrote: [...] > > My favourite is actually "sudo dd of=" it hasn't the side effect > > of flooding your stdout (esp. with a larger, uglier thing). Thanks for all the detai

Re: sudo question

On Thu, Nov 21, 2024 at 09:48:06 +0100, to...@tuxteam.de wrote: > On Thu, Nov 21, 2024 at 08:32:30AM +, Michael Kjörling wrote: > > On 20 Nov 2024 17:49 -0500, from g...@wooledge.org (Greg Wooledge): > > >> sudo echo "something" >>/etc/postfix/virtual_alias_maps > > > > > >> Can you help me wh

Re: sudo question

On Thu, Nov 21, 2024 at 08:14:35 +0100, Erwan David wrote: > On Thu, Nov 21, 2024 at 07:39:33AM CET, Bitfox said: > > > > BTW, what’s the difference between [[ ]] and [ ] here? I know only the > > latter. > > IIRC, [[ ]] is a bash/zsh builtin, [ ] is /bin/[ other name of > /bin/test That's part

Re: sudo question

On Thu, Nov 21, 2024 at 08:32:30AM +, Michael Kjörling wrote: > On 20 Nov 2024 17:49 -0500, from g...@wooledge.org (Greg Wooledge): > >> sudo echo "something" >>/etc/postfix/virtual_alias_maps > > > >> Can you help me why the first sudo failed? > > > > The redirection >> is being done before

Re: sudo question

On 20 Nov 2024 17:49 -0500, from g...@wooledge.org (Greg Wooledge): >> sudo echo "something" >>/etc/postfix/virtual_alias_maps > >> Can you help me why the first sudo failed? > > The redirection >> is being done before sudo is executed. Indeed. The usual pattern if you need to do this in a non-

Re: sudo question

On Wed, Nov 20, 2024 at 9:42 PM Bitfox wrote: > > In my bash shell script, when I say: > > sudo echo "something" >>/etc/postfix/virtual_alias_maps > > it could not run with the prompts: > > bin/mask.sh: line 18: /etc/postfix/virtual_alias_maps: Permission denied > > > but, if I just say: > > echo

Re: sudo question

On Thu, Nov 21, 2024 at 07:39:33AM CET, Bitfox said: > > BTW, what’s the difference between [[ ]] and [ ] here? I know only the > latter. IIRC, [[ ]] is a bash/zsh builtin, [ ] is /bin/[ other name of /bin/test -- Erwan David

Re: sudo question

On 2024-11-21 13:21, Jeffrey Walton wrote: On Wed, Nov 20, 2024 at 9:42 PM Bitfox wrote: In my bash shell script, when I say: sudo echo "something" >>/etc/postfix/virtual_alias_maps it could not run with the prompts: bin/mask.sh: line 18: /etc/postfix/virtual_alias_maps: Permission denied

Re: sudo question

On 11/20/24 17:49, Greg Wooledge wrote: On Thu, Nov 21, 2024 at 06:17:31 +0800, Bitfox wrote: sudo echo "something" >>/etc/postfix/virtual_alias_maps https://mywiki.wooledge.org/BashPitfalls#pf53 Can you help me why the first sudo failed? The redirection >> is being done before sudo is exe

Re: sudo question

Sounds like making bin/mask.sh executable by root ONLY might help you forget to use sudo to run it Sudo chmod /bin/mask.sh x=rshould do it -- All the best Keith Bainbridge keithr...@gmail.com +61 (0)447 667 468 GMT+ 10:00 Sent from my Aphone. Please excuse my brevity. On 21 November 2

Re: sudo question

On Thu, Nov 21, 2024 at 06:17:31 +0800, Bitfox wrote: > sudo echo "something" >>/etc/postfix/virtual_alias_maps https://mywiki.wooledge.org/BashPitfalls#pf53 > Can you help me why the first sudo failed? The redirection >> is being done before sudo is executed.

Re: sudo makes me appear to be logged in again

> Sent: Monday, November 11, 2024 at 9:02 PM > From: "Alain D D Williams" > To: debian-user@lists.debian.org > Subject: sudo makes me appear to be logged in again > > I am running Debian 12.7 > > I logged in via ssh at 16.14 and then went: sudo -s > > If I run "w" I now appear to be logged in t

Re: sudo echo 1 > /proc/sys/net/ipv4/ip_forward [was: How to run automatically a script as soon root login]

On Tue, May 14, 2024 at 04:54:26PM +0800, Bret Busby wrote: > > Wasn't sudo echo the name of a pop group? > > :) If it wasn't it should've been one. Cheers -- t signature.asc Description: PGP signature

Re: sudo echo 1 > /proc/sys/net/ipv4/ip_forward [was: How to run automatically a script as soon root login]

Wasn't sudo echo the name of a pop group? :) Bret Busby Armadale Western Australia (UTC+0800) .

Re: sudo echo 1 > /proc/sys/net/ipv4/ip_forward [was: How to run automatically a script as soon root login]

On Mon, May 13, 2024 at 08:37:16PM +0200, Erwan David wrote: > Le 13/05/2024 à 19:45, Stefan Monnier a écrit : [...] > > % sudo zsh -l > > # echo 1 > /proc/sys/net/ipv4/ip_forward > > # ^D > > logout > > % > > > > 🙂 > > > > > > Stefan > > > > > sudo -i will

Re: sudo echo 1 > /proc/sys/net/ipv4/ip_forward [was: How to run automatically a script as soon root login]

Le 13/05/2024 à 19:45, Stefan Monnier a écrit : $ su - Password: # echo 1 > /proc/sys/net/ipv4/ip_forward # ^D logout $ I don't need no stinkin' sudo :-) And if you only have `sudo`, but not the root password, of course: % sudo zsh -l # echo 1 > /proc/sys/net/ipv4/ip_forward # ^

Re: sudo echo 1 > /proc/sys/net/ipv4/ip_forward [was: How to run automatically a script as soon root login]

On Mon, May 13, 2024 at 01:45:40PM -0400, Stefan Monnier wrote: > > $ su - > > Password: > > # echo 1 > /proc/sys/net/ipv4/ip_forward > > # ^D > > logout > > $ > > > > I don't need no stinkin' sudo :-) > > And if you only have `sudo`, but not the root password, of course: > > % sudo zsh -l >

Re: sudo echo 1 > /proc/sys/net/ipv4/ip_forward [was: How to run automatically a script as soon root login]

> $ su - > Password: > # echo 1 > /proc/sys/net/ipv4/ip_forward > # ^D > logout > $ > > I don't need no stinkin' sudo :-) And if you only have `sudo`, but not the root password, of course: % sudo zsh -l # echo 1 > /proc/sys/net/ipv4/ip_forward # ^D logout % 🙂 Stefan

Re: sudo echo 1 > /proc/sys/net/ipv4/ip_forward [was: How to run automatically a script as soon root login]

On 5/13/24 18:52, to...@tuxteam.de wrote: Now share your ideas :-) $ su - Password: # echo 1 > /proc/sys/net/ipv4/ip_forward # ^D logout $ I don't need no stinkin' sudo :-) regards, chris

Re: sudo udisksctl

On Mon 19 Feb 2024 at 23:53:41 (+0700), Max Nikulin wrote: > David, feel free to stop discussion if you find me annoying. My > problem in some sense is close to your one and I am trying to figure > out if missed some udisks feature and the result is some > inconvenience. > > On 19/02/2024 11:26, D

Re: sudo udisksctl

David, feel free to stop discussion if you find me annoying. My problem in some sense is close to your one and I am trying to figure out if missed some udisks feature and the result is some inconvenience. On 19/02/2024 11:26, David Wright wrote: On Sun 18 Feb 2024 at 12:41:29 (+0700), Max Niku

Re: sudo udisksctl

On Sun 18 Feb 2024 at 12:41:29 (+0700), Max Nikulin wrote: > On 18/02/2024 11:40, David Wright wrote: > >$ ssh bhost > >$ udisksctl unlock --block-device /dev/disk/by-partlabel/Nokia01 > >Passphrase: > > AUTHENTICATING FOR org.freedesktop.udisks2.encrypted-unlock === > >Auth

Re: sudo udisksctl

On 18/02/2024 11:40, David Wright wrote: $ ssh bhost $ udisksctl unlock --block-device /dev/disk/by-partlabel/Nokia01 Passphrase: AUTHENTICATING FOR org.freedesktop.udisks2.encrypted-unlock === Authentication is required to unlock the encrypted device Multiple Card Reader (/

Re: sudo udisksctl

On Sun 18 Feb 2024 at 10:23:52 (+0700), Max Nikulin wrote: > I have decided to ask the following in a separate thread. > > On 17/02/2024 02:59, David Wright wrote > (Re: f3tools vs Silicon Power 4T drive): > > lulu () { sudo udisksctl unlock --block-device > > /dev/disk/by-partlabel/Lulu01

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

David Wright writes: > You'd have to specify a set of criteria to test. I just treat > /media/samsungd like any other filesystem, copying files in the > usual manner. Well, when I last tried MTP in Linux I got maybe half of a directory listing and then it hung there. Concluded it doesn't work bu

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

On Mon 25 Sep 2023 at 21:08:34 (+0300), Anssi Saari wrote: > David Wright writes: > > On Sun 24 Sep 2023 at 22:13:20 (+), Albretch Mueller wrote: > >> On 9/24/23, Marco M. wrote: > >> > On most Android phones, you need to explicit allow data transfers. > >> > >> What do you functionally mea

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

On Mon 25 Sep 2023 at 17:41:13 (+), Albretch Mueller wrote: > On 9/24/23, Michel Verdier wrote: > > If you use USB you need a cable allowing data, some allow only power. > > The USB cable I have been using to charge the battery of that phone > visually seems to be the same exact one being a

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

On Mon, Sep 25, 2023 at 10:13 PM Jeffrey Walton wrote: > > On Mon, Sep 25, 2023 at 7:05 PM Albretch Mueller wrote: > > > > On 9/24/23, Michel Verdier wrote: > > > If you use USB you need a cable allowing data, some allow only power. > > > > The USB cable I have been using to charge the battery

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

On Mon, Sep 25, 2023 at 7:05 PM Albretch Mueller wrote: > > On 9/24/23, Michel Verdier wrote: > > If you use USB you need a cable allowing data, some allow only power. > > The USB cable I have been using to charge the battery of that phone > visually seems to be the same exact one being adverti

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

On 2023-09-25, Albretch Mueller wrote: > Is there a way to test for sure that cable is the right one? Usually the original cable furnished with the phone is a data cable. My only test was to successfully use adb then change cable and see that I have some power only cables.

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

On 2023-09-25, Albretch Mueller wrote: > Android awakens when I unplug the cable from the computer; so, > something is being somehow detected. android also awakens on power on/off

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

David Wright (12023-09-25): > On bullseye I have android-file-transfer installed. I connect the > phone to the PC with USB, and run this function: If we are sharing how we do file transfer to and from an Android phone: My favorite solution is tu install Termux and run sshd in it. Then I can use r

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

On 9/25/23, Albretch Mueller wrote: > Most probably there is a setting in that phone I haven’t been able to > find. Android awakens when I unplug the cable from the computer; so, something is being somehow detected. lbrtchx

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

David Wright writes: > On Sun 24 Sep 2023 at 22:13:20 (+), Albretch Mueller wrote: >> On 9/24/23, Marco M. wrote: >> > On most Android phones, you need to explicit allow data transfers. >> >> What do you functionally mean? I need for you to talk to me like >> this: a) go "Settings"; b) ..

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

On 9/24/23, Michel Verdier wrote: > If you use USB you need a cable allowing data, some allow only power. The USB cable I have been using to charge the battery of that phone visually seems to be the same exact one being advertised as doubling as a data cable, but running: $ sudo lsusb Before

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

On Sun 24 Sep 2023 at 22:13:20 (+), Albretch Mueller wrote: > On 9/24/23, Marco M. wrote: > > On most Android phones, you need to explicit allow data transfers. > > What do you functionally mean? I need for you to talk to me like > this: a) go "Settings"; b) ... On bullseye I have android-

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

As far as I remember adb requires debugging to be enabled on the Android device. For newer androids following - slighly obscure - process has to be used: Enabling USB Debugging on an Android Device - On the device, go to Settings > About . - Tap the Build number seven times to make Settings > Dev

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

Am 24.09.2023 22:13 schrieb Albretch Mueller: > What do you functionally mean? I need for you to talk to me like > this: a) go "Settings"; b) ... According to the Google documentation: With a USB cable, connect your device to your computer. On your device, tap the "Charging this device via USB"

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

On 9/24/23, Marco M. wrote: > On most Android phones, you need to explicit allow data transfers. What do you functionally mean? I need for you to talk to me like this: a) go "Settings"; b) ... Thank you, lbrtchx On 9/24/23, Marco M. wrote: > Am 24.09.2023 um 19:45:11 Uhr schrieb Albretch M

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

On 2023-09-24, Albretch Mueller wrote: > Basically, I need to transfer selected data (whatsapp, messages, > phone calls, ...) off my phone to my computer's hdd. > > How can you troubleshoot that problem or, do you know about any other > way to transfer your data to a drive off your phone? If yo

Re: "sudo apt-get install android-tools-adb" ... (then no device listed)

Am 24.09.2023 um 19:45:11 Uhr schrieb Albretch Mueller: > How can you troubleshoot that problem or, do you know about any other > way to transfer your data to a drive off your phone? On most Android phones, you need to explicit allow data transfers. Did you do?

Re: sudo and echo

On 29.04.2023 02:52, cor...@free.fr wrote: Hello list, When I run this command: $ sudo echo 123 > /root/123.txt A better use is to do: echo 123 | sudo tee /root/123.txt or sudo tee /root/123.txt <

Re: sudo and echo

writes: > (...) > My favourite alternative to tee for this is dd: you don't have to > "throw away" the other stream: > > echo 123 | sudo dd of=/root/123.txt > > Actually, any program willing to pass stdin to an output file > whose name you can choose will do the trick. Hellow tomas, It is ver

Re: sudo and echo

On Fri, Apr 28, 2023 at 10:10:03PM -0500, David Wright wrote: > On Fri 28 Apr 2023 at 20:35:25 (-0400), Greg Wooledge wrote: > > On Sat, Apr 29, 2023 at 01:52:11AM +0200, cor...@free.fr wrote: > > > $ sudo echo 123 > /root/123.txt > > > > > > It tells me "permission rejected". > > > > > > Why thi

Re: sudo and echo

On Fri 28 Apr 2023 at 20:35:25 (-0400), Greg Wooledge wrote: > On Sat, Apr 29, 2023 at 01:52:11AM +0200, cor...@free.fr wrote: > > $ sudo echo 123 > /root/123.txt > > > > It tells me "permission rejected". > > > > Why this sudo can't get success? > > Because the redirection is done by your shell

Re: sudo and echo

On 2023-04-28 at 20:36, Greg Wooledge wrote: > On Fri, Apr 28, 2023 at 08:00:02PM -0400, The Wanderer wrote: > >> I would suspect that >> >> $ sudo 'echo 123 > /root/123.txt' >> >> would produce the effect you're after, but as I don't have sudo >> installed, cannot verify that myself. > > No,

Re: sudo and echo

On 29/04/2023 02:35, Greg Wooledge wrote: On Sat, Apr 29, 2023 at 01:52:11AM +0200, cor...@free.fr wrote: $ sudo echo 123 > /root/123.txt It tells me "permission rejected". Why this sudo can't get success? Because the redirection is done by your shell before sudo is executed. See

Re: sudo and echo

On Fri, Apr 28, 2023 at 08:00:02PM -0400, The Wanderer wrote: > I would suspect that > > $ sudo 'echo 123 > /root/123.txt' > > would produce the effect you're after, but as I don't have sudo > installed, cannot verify that myself. No, that won't work. It'll try to execute a program named 'echo

Re: sudo and echo

On Sat, Apr 29, 2023 at 01:52:11AM +0200, cor...@free.fr wrote: > $ sudo echo 123 > /root/123.txt > > It tells me "permission rejected". > > Why this sudo can't get success? Because the redirection is done by your shell before sudo is executed. See

Re: sudo and echo

On 2023-04-28 at 19:52, cor...@free.fr wrote: > Hello list, > > When I run this command: > > $ sudo echo 123 > /root/123.txt > > It tells me "permission rejected". > > Why this sudo can't get success? If I'm not very much mistaken: because redirection like that is (as I understand matters) pr

Re: 'sudo apt-get update' stall/error

Hi. On Mon, Sep 06, 2021 at 01:43:03AM +0200, Emanuel Berg wrote: > $ sudo apt-get update ... > address = get_proxy_host_port_from_avahi() > File "/usr/share/squid-deb-proxy-client/apt-avahi-discover", line 79, in > get_proxy_host_port_from_avahi ... > > Ideas? apt purge squid

Re: Sudo ... use or delete?

On 1/29/21 11:47 AM, Andrei POPESCU wrote: On Vi, 29 ian 21, 06:34:34, Peter Ehlert wrote: I don't use sudo The systems I use and the systems I setup for others never have sudo users setup ... unneeded. Should I delete the sudo package? Would that cause some internal conflicts? they all hav

Re: Sudo ... use or delete?

On Vi, 29 ian 21, 06:34:34, Peter Ehlert wrote: > I don't use sudo > > The systems I use and the systems I setup for others never have sudo users > setup ... unneeded. > > > Should I delete the sudo package? Would that cause some internal conflicts? > they all have Debian Mate desktops... if tha

Re: Sudo ... use or delete?

On Vi, 29 ian 21, 13:23:19, Roberto C. Sánchez wrote: > > THe chief benefit of sudo is that it makes seeing who did what much > easier. Imagine admin1 uses su to become root and admin2 uses su to > become root. At that point, it is not possible to tell who did what by > looking at command histor

Re: Sudo ... use or delete?

On Fri, Jan 29, 2021 at 02:33:49PM -0300, Eike Lantzsch wrote: > On Friday, 29 January 2021 12:42:19 -03 to...@tuxteam.de wrote: > > On Fri, Jan 29, 2021 at 08:12:20AM -0700, Antonio Russo wrote: > > > > [...] > > > > > But, more specifically to your question about sudo, let me argue > > > that, at

Re: Sudo ... use or delete?

On Friday, 29 January 2021 12:42:19 -03 to...@tuxteam.de wrote: > On Fri, Jan 29, 2021 at 08:12:20AM -0700, Antonio Russo wrote: > > [...] > > > But, more specifically to your question about sudo, let me argue > > that, at the level of paranoia required to be worried about sudo, > > you should also

Re: Sudo ... use or delete?

On 1/29/21 7:50 AM, Teemu Likonen wrote: * 2021-01-29 06:34:34-0800, Peter Ehlert wrote: I don't use sudo The systems I use and the systems I setup for others never have sudo users setup ... unneeded. Should I delete the sudo package? Would that cause some internal conflicts? they all have D

Re: Sudo ... use or delete?

On 1/29/2021 4:57 PM, Antonio Russo wrote: On 1/29/21 8:54 AM, john doe wrote: In the case of sudo, you could deny the use of sudo by removing all users from the sudoers file or by denying sudo access  explicitly in the sudoers file. Also, removing all users from the sudo group. -- John D

Re: Sudo ... use or delete?

On 1/29/21 8:54 AM, john doe wrote: > In the case of sudo, you could deny the use of sudo by removing all > users from the sudoers file or by denying sudo access  explicitly in the > sudoers file. > > -- > John Doe > As I understand it, this would not have protected against the recent local p

Re: Sudo ... use or delete?

On 1/29/2021 4:50 PM, Teemu Likonen wrote: * 2021-01-29 06:34:34-0800, Peter Ehlert wrote: I don't use sudo The systems I use and the systems I setup for others never have sudo users setup ... unneeded. Should I delete the sudo package? Would that cause some internal conflicts? they all hav

Re: Sudo ... use or delete?

* 2021-01-29 06:34:34-0800, Peter Ehlert wrote: > I don't use sudo > > The systems I use and the systems I setup for others never have sudo > users setup ... unneeded. > Should I delete the sudo package? Would that cause some internal > conflicts? they all have Debian Mate desktops... if that ma

Re: Sudo ... use or delete?

On Fri, Jan 29, 2021 at 08:12:20AM -0700, Antonio Russo wrote: [...] > But, more specifically to your question about sudo, let me argue that, at the > level of paranoia required to be worried about sudo, you should also be > worried about a LOT of other packages [...] I do appreciate and use sud

Re: Sudo ... use or delete?

On 1/29/21 7:34 AM, Peter Ehlert wrote: > I don't use sudo > > The systems I use and the systems I setup for others never have sudo users > setup ... unneeded. > > > Should I delete the sudo package? Would that cause some internal conflicts? > they all have Debian Mate desktops... if that makes

Re: Sudo ... use or delete?

On Fri, Jan 29, 2021 at 06:34:34AM -0800, Peter Ehlert wrote: > I don't use sudo Then it shouldn't be installed. Unless it was brought in as an optional dependency by some Desktop Environment. > The systems I use and the systems I setup for others never have sudo users > setup ... unneeded. > >

Re: sudo security flaw

Hi. On Sun, Feb 02, 2020 at 07:56:48AM +1100, Keith Bainbridge wrote: > Details can be found in the upstream advisory at > https://www.sudo.ws/alerts/pwfeedback.html . It worth noting that to exploit CVE-2019-18634 in Debian one has to configure sudoers a very specific way. > For the st

Re: Sudo

On 31/1/20 5:21 am, Patrick Bartek wrote: On Thu, 30 Jan 2020 18:29:06 +1100 Keith Bainbridge wrote: On 29/1/20 6:02 am, Patrick Bartek wrote: My point is that sudo is more of a security "hole" since it only requires a user's password which in my experience are less secure since most users cr

Re: Sudo

On Wed, 29 Jan 2020 08:21:44 +0100 wrote: > On Tue, Jan 28, 2020 at 07:00:03PM -0800, Patrick Bartek wrote: > > On Tue, 28 Jan 2020 20:18:01 + > > Brian wrote: > > > > > On Tue 28 Jan 2020 at 11:02:12 -0800, Patrick Bartek wrote: > > > > > > > The biggest security flaw with any OS is t

Re: Sudo

On Thu, 30 Jan 2020 18:29:06 +1100 Keith Bainbridge wrote: > On 29/1/20 6:02 am, Patrick Bartek wrote: > >> My point is that sudo is more of a security "hole" since it only > >> requires a user's password which in my experience are less secure since > >> most users create short, easy to remember

Re: Sudo

On Thu, Jan 30, 2020, 3:00 AM Keith Bainbridge wrote: > On 29/1/20 9:17 am, Kenneth Parker wrote: > > > > So one of my "early actions", is to enter "sudo passwd root" and enter > > your "normal user password". > > > > > > You should have then been asked to enter and re-enter a new password - > fo

Re: Sudo

On 29/1/20 9:17 am, Kenneth Parker wrote: So one of my "early actions", is to enter "sudo passwd root" and enter your "normal user password". You should have then been asked to enter and re-enter a new password - for root? -- Keith Bainbridge keith.bainbridge.3...@gmail.com 0447 667

Re: Sudo

On 29/1/20 6:02 am, Patrick Bartek wrote: My point is that sudo is more of a security "hole" since it only requires a user's password which in my experience are less secure since most users create short, easy to remember ones. Which is why I suggested you tell sudo to require root password.

Re: Sudo

On Wed 29 Jan 2020 at 09:04:43 (+0200), Andrei POPESCU wrote: > On Ma, 28 ian 20, 08:24:29, David Wright wrote: > > > > My view is that more damage is done to home systems by the sysadmins > > than by external malice, so anything that protects the system from > > such damage is a useful resource.

Re: Sudo

On Wed, Jan 29, 2020 at 01:17:52PM +0100, to...@tuxteam.de wrote: > On Wed, Jan 29, 2020 at 12:15:17PM +, mick crane wrote: > > [...] > > > >That's because "-" tells su to do that. Drop the "-" and it'll leave > > >you in the current dir (among other details, consult the man page for > > >det

Re: Sudo

On 2020-01-29 12:17, to...@tuxteam.de wrote: On Wed, Jan 29, 2020 at 12:15:17PM +, mick crane wrote: [...] >That's because "-" tells su to do that. Drop the "-" and it'll leave >you in the current dir (among other details, consult the man page for >details). yes but "su" keeps the user's

Re: Sudo

On Wed, Jan 29, 2020 at 12:15:17PM +, mick crane wrote: [...] > >That's because "-" tells su to do that. Drop the "-" and it'll leave > >you in the current dir (among other details, consult the man page for > >details). > > yes but "su" keeps the user's path for the executables. > mick Both

Re: Sudo

On 2020-01-29 12:08, to...@tuxteam.de wrote: On Wed, Jan 29, 2020 at 10:31:35AM +, mick crane wrote: [...] The only effective difference for me between "su -" and sudo seems to be that if you are in a directory you don't have permissions and want to change something sudo keeps you in the $

Re: Sudo

On Wed, Jan 29, 2020 at 10:31:35AM +, mick crane wrote: [...] > The only effective difference for me between "su -" and sudo seems > to be that if you are in a directory you don't have permissions and > want to change something sudo keeps you in the $PWD whereas "su -" > puts you in /root and

Re: Sudo

On 2020-01-29 07:04, Andrei POPESCU wrote: On Ma, 28 ian 20, 08:24:29, David Wright wrote: My view is that more damage is done to home systems by the sysadmins than by external malice, so anything that protects the system from such damage is a useful resource. I think that selective sudo¹ provi

Re: Re: Sudo

I am curious too.

Re: Sudo

On Tue, Jan 28, 2020 at 07:00:03PM -0800, Patrick Bartek wrote: > On Tue, 28 Jan 2020 20:18:01 + > Brian wrote: > > > On Tue 28 Jan 2020 at 11:02:12 -0800, Patrick Bartek wrote: > > > > > The biggest security flaw with any OS is the user. > > > > By God. I wish I said that! > > > > The s

Re: Sudo

On Tue, Jan 28, 2020 at 11:02:12AM -0800, Patrick Bartek wrote: [...] > Although, I seem to remember a couple of distros would recommend you > create more secure password, if you entered a poor one, but would still > accept the poor one, if you chose to do so. Can't remember which > distro(s) tho

Re: Sudo

On Ma, 28 ian 20, 08:24:29, David Wright wrote: > > My view is that more damage is done to home systems by the sysadmins > than by external malice, so anything that protects the system from > such damage is a useful resource. I think that selective sudo¹ > provides one way of reducing damage by se

Re: Sudo

Patrick Bartek writes: > Except the smart ones. They read the manual. They are the most dangerous ones. The fools make mere foolish mistakes. The smart users make clever ones. -- John Hasler jhas...@newsguy.com Elmwood, WI USA

Re: Sudo

On Tue, 28 Jan 2020 20:18:01 + Brian wrote: > On Tue 28 Jan 2020 at 11:02:12 -0800, Patrick Bartek wrote: > > > The biggest security flaw with any OS is the user. > > By God. I wish I said that! > > The same is true is true of motor cars, washing machines, microwave > cookers, TV sets, b

Re: Sudo

On Tue, Jan 28, 2020, 4:44 PM mick crane wrote: > On 2020-01-28 18:44, Joe wrote: > > On Tue, 28 Jan 2020 10:29:44 -0700 > > "Harold Hartley" wrote: > > > >> When I did the graphical install I couldn’t even get into su either. > >> That’s why I installed it without graphics the next time. > > >

Re: Sudo

On 2020-01-28 18:44, Joe wrote: On Tue, 28 Jan 2020 10:29:44 -0700 "Harold Hartley" wrote: When I did the graphical install I couldn’t even get into su either. That’s why I installed it without graphics the next time. Whatever the issue was, it wasn't that. I always use a graphical install a

Re: Sudo

On Tue 28 Jan 2020 at 11:02:12 -0800, Patrick Bartek wrote: > The biggest security flaw with any OS is the user. By God. I wish I said that! The same is true is true of motor cars, washing machines, microwave cookers, TV sets, bicycles, the postal system etc, etc. These damned humans - nothing b

Re: Sudo

On Tue, 28 Jan 2020 10:16:18 +0200 Andrei POPESCU wrote: > On Lu, 27 ian 20, 13:01:17, Patrick Bartek wrote: > > On Mon, 27 Jan 2020 18:21:30 +0200 > > Andrei POPESCU wrote: > > > > > > In the typical sudo setup the root account is locked, so both su and > > > root logins are disabled. > >

  1   2   3   4   5   6   7   8   >