![]() It's a good security principle not to stay as a superuser for longer than necessary, just to lessen the possibility of accidentally causing some damage to the system (without it, you can only damage files your user owns). However when doing so you just need to be aware that you are acting as a superuser for every command. and this can still be done without any root password, because sudo gives superuser privileges to the su command.Īnd similarly, instead of su - for a login shell you can use sudo su - or its shortcut sudo -i. With sudo, you still have the option of opening a permanent (interactive) superuser shell with the command: sudo su This can lead to people staying in the superuser shell for longer than necessary just because it's more convenient than logging out and in again later. With su, you permanently drop to a superuser shell which must be exited using exit or logout. Sudo makes it easier to perform a single command with superuser privileges. And lastly, if there is a security breach it can in some cases leave a better audit trail showing which user account was compromised. You can even choose which commands a user is allowed to perform using sudo and which commands are forbidden for that user. If you have multiple users, you can revoke one's superuser access just by removing their sudo permission, without needing to change the root password and notify everyone of a new password. There is no need for them to remember a root password, as they use their own password. ![]() With sudo, you choose in advance which users have sudo access. ![]() You will see this usage of sudo pretty much anywhere you read a tutorial about Ubuntu on the web. For instance, to run apt-get dist-upgrade as a superuser, you could use: sudo apt-get dist-upgrade In a default Ubuntu install the person who installed the OS is given "sudo" permission by default.Īnybody with full "sudo" permission may perform something "as a superuser" by pre-pending sudo to their command. Instead, a default Ubuntu install will use sudo to give superuser privileges. Ubuntu chose not to give a root login and password by default for a reason. While you can create a password for the superuser account allowing you to log in as root with su, it's worth mentioning that this isn't the usual way of doing things with Ubuntu (or increasingly, other distributions as well).
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |