From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1OidG8-0006Ql-I1 for garchives@archives.gentoo.org; Tue, 10 Aug 2010 01:04:05 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 1C374E0C06 for ; Tue, 10 Aug 2010 01:04:04 +0000 (UTC) Received: from mail-qy0-f181.google.com (mail-qy0-f181.google.com [209.85.216.181]) by pigeon.gentoo.org (Postfix) with ESMTP id 2F40DE0ADB for ; Tue, 10 Aug 2010 00:30:42 +0000 (UTC) Received: by qyk7 with SMTP id 7so6941831qyk.19 for ; Mon, 09 Aug 2010 17:30:41 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:mime-version:received:received:in-reply-to :references:date:message-id:subject:from:to:content-type; bh=JRWQHV1zD0oRDEHGnH9r6XPVCHkMBF0+odGPuNArv9Y=; b=FAv0rPvlMnSJZgOepN5jOCCwBhxA+DfW6agGxBPtBLYQ6LvdVdu2m8WSzZxBKw+G4T d8vQfo2Qqs/17jBXjHxDBJjgPa76KfBABVN7hgnvx5oKz9LLBn3GglgqbC5xPpM48+PI qggeUElxTbi73EUEGwTD651DDXw9EFE9Rg6yU= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :content-type; b=bCR2maQjF44BdN9MzLS5oueH8xv6sKRJS+Tf3/MByxEx14LN3FtVJsVL49pdN2ICzd UxGDt8tyohNvSehJLFkg/42HXOa2wTdLbDgS2iSINruVFPSqTif5Df/L8sn7qZ+L3H9s hIJh+lK7WgGLPeZz2vn2njn4QQuqYoE5EjlM4= Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Received: by 10.229.10.198 with SMTP id q6mr7713940qcq.273.1281400240755; Mon, 09 Aug 2010 17:30:40 -0700 (PDT) Received: by 10.229.249.213 with HTTP; Mon, 9 Aug 2010 17:30:40 -0700 (PDT) In-Reply-To: <4C606312.5060105@gmail.com> References: <201008092009.38665.michaelkintzios@gmail.com> <4C606312.5060105@gmail.com> Date: Mon, 9 Aug 2010 17:30:40 -0700 Message-ID: Subject: Re: [gentoo-user] Rooted/compromised Gentoo, seeking advice From: "Kevin O'Gorman" To: gentoo-user@lists.gentoo.org Content-Type: multipart/alternative; boundary=0016364ed99e2a69fa048d6d3e1e X-Archives-Salt: c2db5192-dee9-49b7-a3a6-7d2a23816ff2 X-Archives-Hash: ba3a788a843c9a0a4b23c151cfa32165 --0016364ed99e2a69fa048d6d3e1e Content-Type: text/plain; charset=ISO-8859-1 On Mon, Aug 9, 2010 at 1:20 PM, Bill Longman wrote: > On 08/09/2010 01:08 PM, Robert Bridge wrote: > > On Mon, Aug 9, 2010 at 8:09 PM, Mick wrote: > >> There have been discussions on this list why sudo is a bad idea and sudo > on > >> *any* command is an even worse idea. You might as well be running > everything > >> as root, right? > > > > sudo normally logs the command executed, and the account which > > executes it, so while not relevant for single user systems, it STILL > > has benefits over running as root. > > ...excepting, of course, "sudo bash -l" which means you've given away > the keys to the kingdom. > > I actually prefer "sudo su -" -- as long as I'm giving it away! :o) -- Kevin O'Gorman, PhD --0016364ed99e2a69fa048d6d3e1e Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: quoted-printable
On Mon, Aug 9, 2010 at 1:20 PM, Bill Longman <bill.longman@g= mail.com> wrote:
On 08/09/2010 01:08 PM, Robert Bridge wrote:
> On Mon, Aug 9, 2010 at 8:09 PM, Mick <michaelkintzios@gmail.com> wrote:<= br> >> There have been discussions on this list why sudo is a bad idea an= d sudo on
>> *any* command is an even worse idea. You might as well be running = everything
>> as root, right?
>
> sudo normally logs the command executed, and the account which > executes it, so while not relevant for single user systems, it STILL > has benefits over running as root.

...excepting, of course, "sudo bash -l" which means you've gi= ven away
the keys to the kingdom.

I actually prefer "sudo su -" -- as long as I&= #39;m giving it away!=A0 :o)


--
Kevin O'Go= rman, PhD

--0016364ed99e2a69fa048d6d3e1e--