#sudo
I use doas btw
#doas #sudo #superuser #linux #linuxmeme #linuxmemes #meme #meme #fosserytech
When I do an update on ubuntu "sudo apt update" appears like this what is the solution.? #apt #updates #sudo #updatemanager #errorhandling
ubuntu:ubuntu owns "/" - all server files #server #permissions #sudo #users #chown
Unable to run systemd service without password despite NOPASSWD in sudoers file #commandline #2204 #sudo #password
Changing a folder name that has a space in it #commandline #sudo #directory #rename #prompt
Changing falsely named folders name #commandline #sudo #directory #rename #prompt
Changing falsely named folders name #commandline #sudo #directory #prompt
Obejście ograniczeń sudo ( https://nfsec.pl/security/6190 ) #linux #sudo #security #twittermigration
Recent #sudo versions give you both more control and visibility:
https://www.syslog-ng.com/community/b/blog/posts/getting-syslog-ng-4
- #JSON formatted log messages (parsed automagically by @sngose)
- chroot and cwd support
- logging sub-commands
Perfect for your #infosec blue team!
Unable to create the file /sys/class/net//device/sriov_totalvfs file in Ubuntu 22.04 #permissions #2204 #sudo #filesystem #root
In #Rust we trust :)
Polubiłem ten #językprogramowania od pierwszych zabaw z przekazywaniem parametrów do funkcji ;)
Okazuje się, że zaczynają go lubić również w #Mcrosoft (elementy jądra systemu mają nieco "zardzewieć" – ale o tym czytałem gdzie indziej.)
Jak ktoś chce zajrzeć do środka:
https://github.com/memorysafety/sudo-rs
#programming #programminglanguage #operatingsystem #security #sudo #su #systemoperacyjny #bezpieczeństo
@rust_discussions none of my systems has #sudo - and never had.
"Back in the days", I just used "su", nowadays most applications use #PolicyKit to get elevated privileges for a specific operation and in case I need a full shell, "machinectl shell .host" (aliased to "msh" here) provides a proper (not just subprocess-spawned) session incl. a DBus and systemd user-session.
BTW, #sudo may seem like it’s “just there” as part of your #Unix, #Linux, or #macOS distribution, but it’s a separate project at https://sudo.ws whose history dates back to 1980 on a #DEC #VAX/11-750 running 4.1 #BSD: https://www.sudo.ws/about/history
Actively maintained by @millert with #OpenSource contributions from others, sudo is one of those critical #infrastructure dependencies aptly illustrated in https://xkcd.com/2347
Sponsor it at https://github.com/sponsors/sudo-project or
https://opencollective.com/sudo-project
SUDO_ASKPASS not working #bash #ssh #sudo #virtualconsole
There you go!
https://fedoramagazine.org/use-fido-u2f-security-keys-with-fedora-linux/
Learn how hardware security tokens, featuring the standard #FIDO2 and FIDO U2F, can be used manufacturer independent with standard tools in #Fedora #Linux. The article shows how to register keys, activate them as factor to login on terminal and #GNOME and authenticate when using #sudo.
Following articles in this series will handle #OpenSSH 8.2+ usage for ssh key management and how to use the key as factor to decrypt #LUKS partitions. Stay tuned!
Why am I getting error: `found a tab character that violate indentation` in my Netplan YAML file? #networking #xubuntu #sudo #netplan
Invalid YAML at //etc/netplan/lan-segment.yaml line 11 column 0: found a tab character that violate intendation #xubuntu #sudo #netplan #webserver
Sudo reloaded: Su und Sudo Rewrite in Rust
Su und Sudo sind kritische Komponenten des Linux-Systems, weil sie die Eskalation von Privilegien erlauben. Eine Koproduktion erstellt nun neue Ausgaben auf Basis von Rust.
#su #Sudo #Rust #Sicherheit #Linux
https://gnulinux.ch/sudo-reloaded-su-und-sudo-rewrite-in-rust
#sudo & #su Being Rewritten In #Rust For Memory Safety - Phoronix
https://www.phoronix.com/news/sudo-su-rewrite-rust
Two core Unix-like utilities, #sudo and #su, are getting rewrites in #Rustlang – Ars Technica https://arstechnica.com/information-technology/2023/05/two-core-unix-like-utilities-sudo-and-su-are-getting-rewrites-in-rust/
Ars Technica: Two core Unix-like utilities, sudo and su, are getting rewrites in Rust https://arstechnica.com/?p=1935564 #Tech #arstechnica #IT #Technology #rustprogramminglanguage #memorysafety #commandline #Programming #Biz&IT #Linux #Tech #rust #sudo #UNIX #su
Two core Unix-like utilities, sudo and su, are getting rewrites in Rust - Invoking another user's privileges to execute a command. (credit: Cavan Ima... - https://arstechnica.com/?p=1935564 #rustprogramminglanguage #memorysafety #commandline #programming #biz #linux #tech #rust #sudo #unix #su
This could be an interesting project for Linux. I use sudo on a semi-regular basis.
How To Change Sudo Password Timeout In Linux #sudo #linux #linuxtips #linuxhowto #linuxadmin #linuxbasics
https://ostechnix.com/how-to-change-sudo-password-timeout-in-linux/
Looks like our human friends are finally taking #memorysafety seriously. Now if only they could remember where they put our treats...🐾🤔 #Rust #sudo #su #LinuxSecurity
How could i access to sudo without root or sudo access? #permissions #sudo #root #accessibility #visudo
@mcfly @andreasdotorg What if reading #sudo incident reports was a core activity of PRISM?
How To Add, Delete And Grant Sudo Privileges To Users In Fedora 38 #Fedora38 #Fedora #Linux #Sudo #Linuxhowto #Linuxadministration #Linuxbasics
https://ostechnix.com/add-delete-and-grant-sudo-privileges-to-users-in-fedora/
🦀 Bringing Memory Safety to sudo and su
👉 "reimplementing the ubiquitous sudo and su utilities in Rust"
https://www.memorysafety.org/blog/sudo-and-su/
A recurring #sudo question is whether there is a way to check cached credentials without updating them. Version 1.9.12 of @sudoproject introduces the -N option which makes this possible, and also allows running any commands without updating the cached credentials. https://www.sudo.ws/posts/2022/10/running-sudo-without-updating-cached-credentials/
How To Run Commands As Another User Via Sudo In Linux #Linux #Sudo #Linuxtips #Linuxhowto
https://ostechnix.com/run-commands-as-another-user-via-sudo-in-linux/
Special Edition Alert: The Linux Shell Handbook 2023 Edition is available now! For fastest service, order your copy here https://shop.linuxnewmedia.com/us/magazines/special-editions.html #Linux #Bash #OpenSource #tools #RegularExpressions #hardware #Shell #systemd #sudo #automation
CVE-2023–26604: #systemd before 247 does not adequately block local privilege escalation for some #Sudo configurations, e.g., plausible sudoers files in which the "systemctl status" command may be executed. Specifically, systemd does not set LESSSECURE to 1, and thus other programs may be launched from the less program. This presents a substantial security risk when running systemctl from Sudo, because #less executes as root when the terminal size is too small to show the complete systemctl output.
https://medium.com/@zenmoviefornotification/saidov-maxim-cve-2023-26604-c1232a526ba7
This weekend's mastodon timeline with repeated sudo -p fuckery begs the question whether #sudo, with it's insatiable hunger for password entries, especially with tty_tickets being the default since like 20 years, has *ever* authenticated itself to *me*, AT ALL. 🤔
CVE-2023-22809 advisory writeup by Synacktiv
sudoers policy bypass using sudoedit
https://www.synacktiv.com/sites/default/files/2023-01/sudo-CVE-2023-22809.pdf
This was the only thing that helped me with my #GitHub self-hosted runner that ran an Action which needed #sudo. My self-hosted runner is an ARM64 Oracle Linux install on the frere tier. Totally works! Awesome. https://askubuntu.com/questions/192050/how-to-run-sudo-command-with-no-password
I'm extremely frustrated and disheartened that the #HPC system at our university doesn't have #Emacs preinstalled. As someone who relies heavily on Emacs for my work, this has caused a major obstacle for me.
To make matters worse, I'm not granted the #sudo privilege on the system, which means that I'm unable to install Emacs or any of the necessary dependencies required to compile Emacs myself. This is a major setback for me and has made it incredibly difficult to complete my work efficiently.
I updated my main system from #FreeBSD 13.1-RELEASE to 13.2-BETA3 which include fixes in the USB stack (bin/263995) that basically prevented usage of #ssh ed25519-sk keys (those relying on hardware security keys, e.g. #Yubikey).
A whole new world is opening, one where you can forward your agent to remote systems you only marginally trust and where #sudo can be configured to use this forwarded SSH agent to authorize users.
w00t!
Time to hit Ye Ole "Yum Update"!
That's righ! I said "Yum"!
You may want to run system updates, after a recent sudo security flaw https://www.gamingonlinux.com/2023/02/you-may-want-to-run-system-updates-after-a-recent-sudo-security-flaw/
#Update #Sudo #SecurityFlaw #Linux #SteamDeck #InfoSec #OpenSource #TechNews
My next #FedoraMagazine article will detail how to setup a #YubiKey for things like #Gnome login, authenticating against #sudo, #OpenSSH or as an #OTP / #WebAuthn factor in web authentication.
I ask you to share details and questions you'd like addressed in the article.
If you have some interesting other use-cases or bit's of knowledge you'd like to share on the matter I'm eager to here them!
Teaching my son about chmod, chown, and sudo...
So naturally I had show him the relevant xkcd. https://xkcd.com/149/
I just learned that I received "2023 People's Choice #Award for #RaspberryPi" for my opensource.com article about #sudo log server daemon on the @Raspberry_Pi:
https://opensource.com/article/23/1/community-choice-authors-2023#raspberry-pi
The article:
https://opensource.com/article/22/3/sudo-session-recordings-raspberry-pi
"Collect sudo session recordings with the Raspberry Pi"
I only have one question, how will someone type an emoji on a terminal in a practical way?
This was fun to read, even if i don't have the knowledge to understand the advanced parts lol
"🥺: the best sudo replacement
Es gibt `community.general.doas`:
https://docs.ansible.com/ansible/latest/collections/community/general/doas_become.html
Dann könnte #sudo langsam in Rente geschickt werden.
Latest version of #AlpineLinux ships with doas instead of #sudo now. Cool! I wondered when I'd get to try it.
I have not seen any usability or compatibility issues yet. Granted, though, it does take some mental gymnastics to remember to type doas instead of sudo, having typed the latter for over 10 years now, but I see basically no difference as a user. Maybe I should do an alias sudo->doas as some sort of training wheels :D
Do you think doas is better than sudo? More secure? Why?
FWIW my two cents is you basically want to use SSH instead of su or sudo
Ideally there'd be a bit of awkward code to pass the terminal back and forth directly
Unfortunately you can't really reparent a process (at least not easily)
🥺: the best sudo replacement
Having taken down our institute’s CI/CD (big commercial tool…) just before Christmas by using an emoji in a commit message, I think security by emoji might just work 😄
🥺: the best sudo replacement
How do you run commands as root?
Boost for more range📶
#foss #linux #root #admin #opensource #freesoftware #poll #polls #survey #sudo
:terminal: sudo nim compile ghostwriter
What happens if you use Sudocrem® in Unix?
How do _you_ pronounce ’sudo’? :terminal:
#sudo #linux #unix #phonetics #fauxnetics
alpine linux sudo
# apk add sudo
# echo '%wheel ALL=(ALL) ALL' > /etc/sudoers.d/wheel
# adduser <USER> wheel
Better late than never: #introduction
I'm Peter Czanik, know as PCzanik on Twitter. I work at One Identity, an #infosec company (my former employer, Balabit, is now part of OI).
I am an #opensource evangelist for #sudo and #syslog_ng. Describing my job is a bit too long for a toot, so I recommend reading my article about it:
https://opensource.com/article/21/1/open-source-evangelist
I'm also interested in #POWER, #ARM, hiking, photography, music, #Linux, #FreeBSD and many more topics.