Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday

Liste des GroupesRevenir à col misc 
Sujet : Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday
De : lars (at) *nospam* beagle-ears.com (Lars Poulsen)
Groupes : comp.os.linux.misc
Date : 31. Jul 2024, 16:49:41
Autres entêtes
Organisation : AfarCommunications Inc
Message-ID : <v8diu6$1kbog$1@dont-email.me>
References : 1 2 3 4 5 6 7 8
User-Agent : Mozilla Thunderbird
On 7/31/2024 3:17 AM, The Natural Philosopher wrote:
On 31/07/2024 10:23, Richard Kettlewell wrote:
The Natural Philosopher <tnp@invalid.invalid> writes:
But who tuns a true multiuser system these days especially one where
users can do simple admin?
>
Even disregarding hobbyists, more than zero but I expect the number is
indeed rather small.
Not sure what you mean by "hobbyist". To me, a "linux hobbyist" is someone like me, who deliberately runs a system at home that is more complex and "professional" than necessary, to keep alive some skills acquired decades ago when we managed a Unix system used by our department.
But I also use those skills in the small company that still writes me a paycheck in my semi-retirement.

There’s a few points here:
>
* You can still set a root password and use ‘su’ on Ubuntu systems if
   that’s what you want. Canonical are not enforcing a policy here, just
   setting a default.
My Linux systems are Fedora rather than Ubuntu; Fedora also promotes sudo.

* The ‘sudo instead of su’ model is common everwhere, not just Ubuntu; I
   expect the motivation for the default setup on Ubuntu is
   simplification, not any theories about who can remember how many
   passwords.
>
* Trusting sudo to enforce the a tailored access model is somewhat
   optimistic given its CVE record, and the general record of the setuid
   model that underpins it.
>
* By escaping the setuid model run0 may improve on this issue, though it
   brings other kinds of complexity with it; how it balances out is
   probably a question for a few years time.
>
* In the single-user context, sudo effectively creates the model that
   your single user account has privileges equivalent to root, but that
   you must explicitly mark any privileged operation. The former is just
   acknowledging reality, the latter is a useful guard against accidents.
>
+1 to all of that.
 I use sudo if its just one thing I need to do, but if its messing with config files and restarting daemons, I use su -
Is that because you do not know about "sudo -i" ?
Note that run0 - which is built on polkit - still relies on setuid executables within polkit. I don't see them as all that different.
The grace period in sudo is a convenience. It probably does add a bit of risk. There is probably a way to turn it off --- yes: timestamp_timeout=0 in /etc/sudoers (apparently per-user)

Date Sujet#  Auteur
20 Jul 24 * Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday137John McCue
31 Jul 24 `* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday136candycanearter07
31 Jul 24  +* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday134Bobbie Sellers
31 Jul 24  i+* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday3Lawrence D'Oliveiro
4 Aug 24  ii`* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday2vallor
5 Aug 24  ii `- Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday1Lawrence D'Oliveiro
31 Jul 24  i+* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday10The Natural Philosopher
31 Jul 24  ii`* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday9Richard Kettlewell
31 Jul 24  ii `* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday8The Natural Philosopher
31 Jul 24  ii  `* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday7Lars Poulsen
31 Jul 24  ii   `* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday6Richard Kettlewell
31 Jul 24  ii    +* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday2John Dallman
1 Aug 24  ii    i`- Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday1rbowman
31 Jul 24  ii    `* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday3The Natural Philosopher
1 Aug 24  ii     `* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday2Richard Kettlewell
1 Aug 24  ii      `- Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday1The Natural Philosopher
31 Jul 24  i+* Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday2Rich
31 Jul 24  ii`- Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday1The Natural Philosopher
4 Aug 24  i`* Linux at scale (was: Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday)118vallor
4 Aug 24  i `* Re: Linux at scale117Bobbie Sellers
4 Aug 24  i  `* Re: Linux at scale116vallor
5 Aug 24  i   `* Re: Linux at scale115Lawrence D'Oliveiro
5 Aug 24  i    `* MS Access (was: Re: Linux at scale)114vallor
5 Aug 24  i     +- Re: MS Access (was: Re: Linux at scale)1Lawrence D'Oliveiro
5 Aug 24  i     +* Re: MS Access (was: Re: Linux at scale)2Lawrence D'Oliveiro
7 Aug 24  i     i`- Re: MS Access (was: Re: Linux at scale)1186282@ud0s4.net
5 Aug 24  i     +* Re: MS Access (was: Re: Linux at scale)52Philip Herlihy
6 Aug 24  i     i`* Re: MS Access (was: Re: Linux at scale)51Lawrence D'Oliveiro
6 Aug 24  i     i `* Re: MS Access50...winston
7 Aug 24  i     i  `* Re: MS Access49Lawrence D'Oliveiro
7 Aug 24  i     i   `* Re: MS Access48Philip Herlihy
7 Aug 24  i     i    `* Re: MS Access47Lawrence D'Oliveiro
8 Aug 24  i     i     +* Re: MS Access42Chris
8 Aug 24  i     i     i+* Re: MS Access3Big Al
8 Aug 24  i     i     ii+- Re: MS Access1Chris
9 Aug 24  i     i     ii`- Re: MS Access1Lawrence D'Oliveiro
8 Aug 24  i     i     i+* Re: MS Access35rbowman
12 Aug 24  i     i     ii`* Re: MS Access34186282@ud0s4.net
12 Aug 24  i     i     ii `* Re: MS Access33Lawrence D'Oliveiro
13 Aug 24  i     i     ii  `* Re: MS Access32186282@ud0s4.net
13 Aug 24  i     i     ii   `* Re: MS Access31Lawrence D'Oliveiro
14 Aug 24  i     i     ii    +* Re: MS Access3Lawrence D'Oliveiro
14 Aug 24  i     i     ii    i`* Re: MS Access2186282@ud0s4.net
14 Aug 24  i     i     ii    i `- Re: MS Access1Lawrence D'Oliveiro
14 Aug 24  i     i     ii    `* Re: MS Access27186282@ud0s4.net
14 Aug 24  i     i     ii     +* Re: MS Access16Lawrence D'Oliveiro
14 Aug 24  i     i     ii     i`* Re: MS Access15Lawrence D'Oliveiro
15 Aug 24  i     i     ii     i +- Re: MS Access1sticks
16 Aug 24  i     i     ii     i `* Re: MS Access13Lawrence D'Oliveiro
17 Aug 24  i     i     ii     i  `* Re: MS Access12186282@ud0s4.net
17 Aug 24  i     i     ii     i   +- Re: MS Access1Lawrence D'Oliveiro
18 Aug 24  i     i     ii     i   `* Re: MS Access10Lars Poulsen
18 Aug 24  i     i     ii     i    `* Re: MS Access9Paul
18 Aug 24  i     i     ii     i     +- Re: MS Access1Andreas Eder
18 Aug 24  i     i     ii     i     +* Re: MS Access6rbowman
19 Aug 24  i     i     ii     i     i+* Re: MS Access2Paul
19 Aug 24  i     i     ii     i     ii`- Re: MS Access1rbowman
19 Aug 24  i     i     ii     i     i`* Re: MS Access3Peter Dean
19 Aug 24  i     i     ii     i     i `* Re: MS Access2Paul
19 Aug 24  i     i     ii     i     i  `- Re: MS Access1rbowman
22 Aug 24  i     i     ii     i     `- Re: MS Access1Lawrence D'Oliveiro
15 Aug 24  i     i     ii     `* Re: MS Access10vallor
15 Aug 24  i     i     ii      +- Re: MS Access1Paul
17 Aug 24  i     i     ii      `* Re: MS Access8186282@ud0s4.net
17 Aug 24  i     i     ii       `* Re: MS Access7Lawrence D'Oliveiro
18 Aug 24  i     i     ii        +* Re: MS Access4Lars Poulsen
18 Aug 24  i     i     ii        i`* Re: MS Access3The Natural Philosopher
20 Aug 24  i     i     ii        i `* Re: MS Access2186282@ud0s4.net
20 Aug 24  i     i     ii        i  `- Re: MS Access1rbowman
20 Aug 24  i     i     ii        `* Re: MS Access2186282@ud0s4.net
22 Aug 24  i     i     ii         `- Re: MS Access1Lawrence D'Oliveiro
9 Aug 24  i     i     i`* Re: MS Access3Lawrence D'Oliveiro
9 Aug 24  i     i     i `* Re: MS Access2Chris
9 Aug 24  i     i     i  `- Re: MS Access1Lawrence D'Oliveiro
8 Aug 24  i     i     `* Re: MS Access4Philip Herlihy
8 Aug 24  i     i      `* Re: MS Access3Pancho
9 Aug 24  i     i       `* Re: MS Access2Lawrence D'Oliveiro
9 Aug 24  i     i        `- Re: MS Access1Pancho
5 Aug 24  i     +- Re: MS Access1Big Al
5 Aug 24  i     +* Re: MS Access (was: Re: Linux at scale)2Stan Brown
6 Aug 24  i     i`- Re: MS Access1...winston
6 Aug 24  i     +* Re: MS Access54Computer Nerd Kev
6 Aug 24  i     i`* Re: MS Access53Lawrence D'Oliveiro
7 Aug 24  i     i +* Re: MS Access39vallor
7 Aug 24  i     i i`* Re: MS Access38Lawrence D'Oliveiro
7 Aug 24  i     i i `* Re: MS Access37186282@ud0s4.net
7 Aug 24  i     i i  `* Re: MS Access36Lawrence D'Oliveiro
8 Aug 24  i     i i   +* Re: MS Access31Lawrence D'Oliveiro
8 Aug 24  i     i i   i+* Re: MS Access23186282@ud0s4.net
8 Aug 24  i     i i   ii`* Re: MS Access22Lawrence D'Oliveiro
12 Aug 24  i     i i   ii `* Re: MS Access21186282@ud0s4.net
12 Aug 24  i     i i   ii  `* Re: MS Access20Lawrence D'Oliveiro
12 Aug 24  i     i i   ii   +* Re: MS Access4Paul
13 Aug 24  i     i i   ii   i`* Re: MS Access3Lawrence D'Oliveiro
13 Aug 24  i     i i   ii   i `* Re: MS Access2Paul
13 Aug 24  i     i i   ii   i  `- Re: MS Access1Lawrence D'Oliveiro
13 Aug 24  i     i i   ii   `* Re: MS Access15186282@ud0s4.net
13 Aug 24  i     i i   ii    `* Re: MS Access14Lawrence D'Oliveiro
14 Aug 24  i     i i   ii     +* Re: MS Access8John Dallman
14 Aug 24  i     i i   ii     i+* Re: MS Access3Lawrence D'Oliveiro
14 Aug 24  i     i i   ii     ii`* Re: MS Access2John Dallman
14 Aug 24  i     i i   ii     i`* Re: MS Access4The Natural Philosopher
14 Aug 24  i     i i   ii     `* Re: MS Access5Paul
11 Aug 24  i     i i   i`* Re: MS Access7candycanearter07
8 Aug 24  i     i i   `* Re: MS Access4186282@ud0s4.net
7 Aug 24  i     i `* Re: MS Access13Just Me
7 Aug 24  i     `- Re: MS Access1vallor
6 Aug 24  `- Re: Wonderful Windows Zaps Banks/Transport/Media after "Update" Yesterday1186282@ud0s4.net

Haut de la page

Les messages affichés proviennent d'usenet.

NewsPortal