From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1RP0fN-0001Ua-GG for garchives@archives.gentoo.org; Fri, 11 Nov 2011 23:37:49 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id CE0FE21C1BC; Fri, 11 Nov 2011 23:37:39 +0000 (UTC) Received: from mail-gx0-f181.google.com (mail-gx0-f181.google.com [209.85.161.181]) by pigeon.gentoo.org (Postfix) with ESMTP id EF0A321C16D for ; Fri, 11 Nov 2011 23:36:45 +0000 (UTC) Received: by ggnv2 with SMTP id v2so5866467ggn.40 for ; Fri, 11 Nov 2011 15:36:45 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=bXHtIVyO1cPxKcZmh+avZGM10ty7AjF+JS8B1lB4+2s=; b=IGXEP/VxhwHa9Sk33vwzTZPe3uZX9DOLc5anK0Btb6cuH8tRbbM053XCLZDqrI+pgy 0S9k1/UUcdkc8xjngfmP4j2Snq7lY1BTZhdDUTbYs/P6wcM6qPFzsTVlkMG9vit/+kM9 2ML2exajNyeFKKORbGUjQxENg2yg33aPqPDxQ= Received: by 10.236.124.105 with SMTP id w69mr127536yhh.2.1321054605444; Fri, 11 Nov 2011 15:36:45 -0800 (PST) Received: from [192.168.2.5] (adsl-65-0-124-88.jan.bellsouth.net. [65.0.124.88]) by mx.google.com with ESMTPS id o50sm19303796yhl.9.2011.11.11.15.36.43 (version=SSLv3 cipher=OTHER); Fri, 11 Nov 2011 15:36:44 -0800 (PST) Message-ID: <4EBDB18A.5030804@gmail.com> Date: Fri, 11 Nov 2011 17:36:42 -0600 From: Dale User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:7.0.1) Gecko/20111022 Firefox/7.0.1 SeaMonkey/2.4.1 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] [OT] Binary install distro References: <4EBC1707.5030103@gmail.com> <4EBD3738.9090203@gmail.com> <4EBD4224.7070307@gmail.com> <20111111211831.68ab7c63@rohan.example.com> <4EBD8361.7080407@gmail.com> <20111111232730.36227d33@rohan.example.com> In-Reply-To: <20111111232730.36227d33@rohan.example.com> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit X-Archives-Salt: d73df88f-c957-4f7c-816f-65641f1b7b70 X-Archives-Hash: 54c5d489395bcef99fd08034b3acefbc Alan McKinnon wrote: > On Fri, 11 Nov 2011 14:19:45 -0600 > Dale wrote: > >> ine is a single user machine both for me and my brother. That said, >> if I did have other users on my machine, they wouldn't even be in the >> wheel group so sudo wouldn't happen either. They would be able to do >> user things but nothing else. >> >> That said, I know sudo fixes some problems and has its reason for >> existing. Me, its just like the init thingy, I haven't found a good >> reason yet to have one so no need adding it. That will likely change >> shortly but hopefully not today. I found a workaround on kubuntu >> tho. Just set the root password so you can login as root and carry >> on. ;-) Even I have a gas pocket in my brain from time to time. :-D >> > > Yeah, that's the way you do it. > > I don't have sudo on my own machines for the same reason > (except the Ubuntu ones, I can't be bothered removing it) but at work > I'd be slaughtered by Risk if I didn't have it. > > Without sudo the only way to let users do anything more than what > regular users can do is to give them the root password. Seeing as the > root password is randomly generated, forgotten, and kept in a sealed > envelope in a safe, that's not really an option. Sudo lets me > fine-grain control exactly what users can do, like let the web team > install and update sites, let team leaders update team crontabs, and > more. Plus everything is logged. If some chop deletes important files, > I want a timestamped record telling me who and when :-) > > So in a corporate environment, sudo is an absolute necessity. > > It's also very useful for personal machines, > especially newbies. Having to enter their password every time > encourages them to think about what they are running and treat root > privs with a little more respect. It doesn't always work out though - I > still have idiots on the above-mentioned multi-user machines who > blindly run "apt-get install gnome" on a SuSE host. At least they can't > argue when I call them on it (due to the magic feature called "logs") > Then I can see the benefits of sudo where they is a division of labor for sure. I don't know how it works exactly but I knew it allowed regular users to run CERTAIN things that root as given them access to. I didn't know about the logs tho. If I was running a server where there were several people doing different things that I would never be able to do alone, then sudo would be the tool. I just hope I never have to worry about learning it TO much. ;-) Now to figure out why the windows in Kubuntu have no borders and no little X to close the window. < sighs > I hate the little details. Dale :-) :-)