Skip to main content
Information Security

Questions tagged [sudo]

Ask Question

`sudo` is a command that allows a user to use commands with the privileges of another user, usually the root user.

87 questions
Newest Active Bountied Unanswered
1 vote
1 answer
141 views

Seems a lot of privileged escalation involves replacing libc or another dependency of a setuid binary like "sudo" with something an attacker controls. To ensure this, a wide range of file ...
mousetail's user avatar
  • 71
1 vote
1 answer
75 views

We are using SSSD to connect RHEL systems to Microsoft Active Directory. Access is granted to groups using the SSSD simple_allow_groups option and those groups are also used to allow sudo access. Some ...
yakatz's user avatar
  • 111
10 votes
3 answers
3k views

A number of Linux distros, for quite a while now, by default install no root passwords and always require sudo from another user to become root. Examples are Ubuntu and AWS. This is implemented with ...
Kevin Keane's user avatar
  • 1,201
0 votes
0 answers
114 views

I am wondering what attacks would be theoretically possible against a Python script that executes a subprocess involving sudo. I know that asking for the sudo password using input() or getpass(), then ...
dinatamaspal's user avatar
  • 1
3 votes
1 answer
259 views

My ~/.bash_aliases contains aliases such as the following examples: alias duh="sudo du -sh ./* | sort -hr | head -n 10" alias pcm="sudo pcm -nc -nsys" Question is, how smart that ...
metablaster's user avatar
  • 259
7 votes
3 answers
2k views

I often need to run commands with sudo during development and since my password is lengthy I don't like to type it every time sudo times out which by default is 5 minutes. To deal with that I've run ...
metablaster's user avatar
  • 259
1 vote
1 answer
166 views

I have a main user with home folder encryption enabled. To avoid typing long phrase each time I want to have another user with sudo privilege and weak password. In the terminal I would first switch ...
Pawel Cioch's user avatar
  • 121
2 votes
2 answers
2k views

Given that I'm the only human who should have access to a Linux server, what are the major security risks associated with updating sudo to not require a password for my local user? Are there other ...
mgiuffrida's user avatar
  • 123
11 votes
2 answers
4k views

I'm working with a customer where I use a functional user ID, created specifically for the purpose, to install and configure some software on multiple servers. The customer's security policies, ...
mustaccio's user avatar
  • 181
0 votes
2 answers
420 views

Windows only show [Yes] or [No] for the same thing as Linux's sudo. macOS/Linux both require you to type the password. Is the password-less Windows implementation almost as secure as password-...
Damn Vegetables's user avatar
  • 237
0 votes
0 answers
120 views

This question relates to a comment on a question I posted at https://askubuntu.com/questions/1426688/sudo-with-a-userid-reverting-old-behaviour?noredirect=1#comment2484447_1426688 Specifically, in ...
davidgo's user avatar
  • 713
1 vote
2 answers
300 views

TL;DR: running npm i ... not long after pass my-password allows a malicious package to steal my entire password store. I use pass as a password manager, on Linux. And like probably all Linux users, I ...
Zwyx's user avatar
  • 113
1 vote
1 answer
514 views

If there is a program written by a normal user that requires root privileges (eg. a program that interacts with root processes) what is the difference between running this program using sudo vs. ...
durestudios's user avatar
  • 13
1 vote
1 answer
230 views

I had a debate with a friend about the security model in new OS X versions. OS X El Capitan and newer have the System Integrity Protection security feature which protects aspects of the OS even from ...
Paul's user avatar
  • 633
1 vote
1 answer
1k views

I want to use gpg from another user (user2), so that the primary user (user1) does not have access to the encrypted file, but only to the part the script will output. Added a sudo rule for user1 to ...
NewLinux's user avatar
  • 735

15 30 50 per page
1
2 3 4 5 6