The Secret Superpowers of SUDO

Показать описание

#garyexplains

Рекомендации по теме

Комментарии

4:22 visudo is not editing the sudoers directly, it is doing it through a temporary file that is checked for correctness on exiting, this is a protective measure since you may lose admin access if you mess up the file.

SlyEcho

I used to teach Unix/Linux system administration. In those days logging in as root was acceptable practice. Then it was log in as an ordinary user then su to root. 2 different passwords had to be known. Now it's log in as ordinary user and sudo with same password. Seems less secure to me. I'm retired now. On my home network I use sudo -i to become root instead of keying sudo for every command. bash history logs all of the commands.

FYI, doing rm -r /* as root is not instantaneous disaster as some claim. It takes a long time to wipe out a system because there are thousands of files to remove.

Of course as root one must ALWAYS work carefully. Make backup of config files before changing them. Document your changes in the config file and a separate log file. For any command that is potentially destructive key your command, read it carefully a couple of times, think about it, edit as necessary, think again before pressing enter. Accuracy comes with practice but never get over confident. Sometimes the fingers, eyes and brain do not correctly coordinate.

I enjoy your videos. Thanks for investing all of those heartbeats into them.

paulalmquist

I just wanted to say thank U Gary ! I learn so much from your vids, and I hope U continue doing these great GE's stuff, because I think I'm not alone learning something new from your vids either novas or power-user, I think there's something to learn from all levels of users, so thanks again Gary and keep up the good vids !

lorrewatkins

And this whole time I just been retyping. Thank you sudo !!

wallyhare

One important thing of sudo in a multi user system is the logging so you can trace important changes.
However you also should limit commands that can be executed using sudo. Perhaps an idea to explain this in a next video.
Be warned: It is also possible to do something like 'sudo csh' to start a cshell as root.

JanJeronimus

Another nice feature is the ability to allow users to execute specific commands as root without a password. For instance on my Debian machine, dmesg can only be used by root (because of the read access on /proc/kmsg) so I have the following sudoers rule to allow my user foobar to do a 'sudo dmesg' without a password:
foobar ALL = (root) NOPASSWD: /bin/dmesg ""
The empty argument "" after dmesg is there to prevent sudo from accepting additional arguments.
WARNING: An attacker could abuse a command argument to read or write protected file.
Other typical uses of that feature are load/unload of kernel modules and also write into protected /sys files (e.g. change the cpufreq governor, flush the disk caches before running a benchmark, ...).

Also, users can run the command 'sudo -l' to get a summary of all relevant sudoers rules.

cynodont

Thank you Gary, I love sysadmin-related videos.

aryanghasemi

Nice! Thanks. I would be interested in a more in depth follow up.

Great video, I like the way you explain things. thanks Gary! ..question: I Am just starting to learn command lines, are there books or tutorials that you can recommend to really learn how to use command lines?? ... much appreciated.

rubengutierrez

I really enjoyed this... Didn't know sudo was that configurable.

What about the fields with ALL? Can we restrict some commands on specific groups? Or maybe some repositories? I would love a bit more advanced video on sudo

DND

Did you know that those "incidents" get reported to Santa.

catsoften

Thank you! I wanted to setup a no password sudo account. This made it very easy :D

developerpranav

There’s a lot of bits of Unix that make sense if you have a hundred users logged into a single system like the mini computers and dumb terminals of old.

johnsimon

Gary bro, what is task threshold and adaptive lmk?

nitrovenom

Not a Linux user, but sometimes I use Linux system and use cmd "sudo- su" what is that

anaywalunjkar

Very interesting, not sure I'll change anything as I am the only Linux user on my network.

sendgl

On machines where security is not important, I like to 'sudo echo "ALL ALL = NOPASSWD: ALL" > /etc/sudoers.d/wideopen'

Chalisque

*GARY!!!*
*Good Evening Professor!*
*Good Evening Fellow Classmates!*

Stay safe out there everyone!

MarkKeller

Hey Gary, all this commands shit just look like years 70´s computing for me. When we are going to have implementations by one click on Linux ? Man, this is 21 century !

ivanguerra

"sudo !!" will probably be the most useful one for me although I did something like up arrow then home then type "sudo " which is also very fast.

Thanks for revealing the "super" powers.

codingsaroj

The Secret Superpowers of SUDO

The Secret Superpowers of SUDO

How do you say sudo in Linux?

Raspberry Pi - What is sudo?

Sudo for Windows - How to Enable it, and How to Use it

Extreme Measures | Teen Titans GO! | Cartoon Network

Get Brainy with Professor Sudo's Intelligence Bootcamp!

What does sudo mean and do? (5 Solutions!!)

3 2 4 What Is Sudo

CompTIA Linux+ (XK0-004) Super User Privileges | First 3 For Free

Hacker Tools Origin Stories

Emotions: Nature's Masterclass in Survival (and Thriving!)

How Internet Scams Are Connected To Witchcraft 💀🪄

Mongo Has A RAINBOW TOUCH In Minecraft!

12.Network Commands & Sudo Privileges In Kali

How To Pronounce Sudo

Amazon Astro - Personal Surveillance Bot

Linux Command Line Tutorial For Beginners - sudo command

ICP - How to BOSS the 2025 Bull Run with ICP

Emulate RISC-V on a Raspberry Pi

Marvel's Avengers: Age of Ultron Music Video (ft. Peter Hollens) - Studio C

'The Secret Lives of Binaries': Buffer Overflow Workshop with SoDA

🌟5 Benefits of Ginger Secrets Over Age 50! (Doctors SHOCKED)

Spiderman - Across The Multiverse Of Madness: PART 1

Setting up a production ready VPS is a lot easier than I thought.