• AA5B@lemmy.world
    5·
    2 hours ago

    Look at OP, claiming to have that mythical girlfriend who will make a sandwich without escalating privileges

  • TipsyMcGee@lemmy.dbzer0.com
    5·
    4 hours ago

    If I’m using the CLI, it tends to be for things that require root access. Can’t properly skull fucm my system without root

  • SilentObserver@lemmy.world
    15·
    10 hours ago

    Don’t need sudo if you’re always root.

    Now excuse me. I need to call the bank and find out why my checking account is suddenly $0.

    • shane@feddit.nl
      2·
      7 hours ago

      And yet half the time when I’m root I preface with sudo. I can’t stop myself!

  • Matt@lemmy.ml
    1·
    6 hours ago

    Tell this to my cousin (though he probably does this to gaslight me).

  • luciferofastora@feddit.org
    15·
    20 hours ago

    I once did a HackTheBox where the privilege escalation weakness was a cronjob running a script. I’m not sure if I correctly remember all the details, but I think it read some parameters from a file and fed them to some other script. Since it had something to do with the webserver the user was administrating, they needed write access to the file, granted via ACL. That took me a while to spot, actually. Not sure why, but ACL is a constant blind spot for me. As for passing the parameters, you can just append the contents of the file to the command and pipe it to bash.

    I don’t recall what the normal script did, but it needed writing permissions for something. The proper way to do this would be ACL, but I guess I’m not the only one with a blind spot. The easy way to ensure the script can do whatever it needs to is to sudo the whole thing.

    So what do you do if you have a script running every ten minutes, reading the first line of a file you can edit, then executing it with superuser privileges?

    Whatever the fuck you want.

  • blaue_Fledermaus@olio.cafeEnglish
    17·
    21 hours ago

    IMO the “year of the Linux desktop” will come when distros are designed for people who shouldn’t even be allowed to use sudo.

    • WFH@lemmy.zip
      17·
      20 hours ago

      Let me introduce you to atomic distros.

      I moved my father on Bluefin 1.5 years ago from his antique MacBook Air. He doesn’t know sudo exists. He has never heard of ujust. He doesn’t even command line. He hasn’t had to do a single update because it all happens in the background. He just… uses it.

      • Skullgrid@lemmy.world
        4·
        20 hours ago

        doesn’t even have to be atomic, I rescued my wife’s shit laptop using Ubuntu Mate (snaps booing in background) and she has never seen the command line unless I open it. It’s been like that for over a year at least.

        • WFH@lemmy.zip
          5·
          20 hours ago

          Yes, but contrary to atomic distros, it’s not explicitely designed to be as administration free as possible.

    • MonkderVierte@lemmy.zip
      1·
      3 hours ago

      I’ve seen that piece, mostly in beginner instructions, for a root shell. But does it even make sense? Why run a elevated su? Just run su.

        • B-TR3E@feddit.org
          101·
          23 hours ago

          Some people think before they type. They also do not think mindlessly typing “sudo” before every fucking line in bash is a valid substitute for knowing what they do. Many of them have been doing so for decades on HPUX, Solaris, BSDs and IRIX on their own and other people’s/companies machines, not just on their single bedroom machine.

      • nieceandtows@programming.dev
        51·
        1 day ago

        It’s easier to just call su once and run every single command as root rather than having to randomly use sudo for some commands and not for others (/s if it’s not obvious)