nixCraft 🐧
which one are you? #linux #unix
Jan 5, 2024 at 8:27amWeb
Show threadCondor Puma SerpienteJan 5, 2024
@nixCraft 2 or 4 and nothing else
Show thread[binbows]Jan 5, 2024
@nixCraft i'm a sudo user, but what's wrong with doas?
Show threadfabiandrinksmilkJan 5, 2024
@binbows @nixCraft The list is in reverse. You should be asking what's better with doas. It is a sudo alternative from openBSD that has been ported to Linux. The main advantages are a lower attack surface due to having less code and a simpler config.
Show threaduanzJan 5, 2024
@binbows @nixCraft There is nothing wrong with doas, some say it is better due to a smaller codebase (sudo does WAY more than just execute something as root), which should probably make it less prone to bugs (that are quite critical in this field)
Show threadrootCompute:\Jan 5, 2024
@nixCraft what do you think? 😏
Show threadAlan HicksJan 5, 2024
@nixCraft
Ah, the days when security was simple 🔐
Show threadchfkch  Jan 5, 2024
@nixCraft using Linux just to run a WIndows VM as Administrator.
Show threadpoes 🇵🇸Jan 5, 2024
@nixCraft doas
Show threadþēodrīċ, norþes ecghlāfordJan 5, 2024
@nixCraft no.4
Show threadTomi the Slav and 1024 othersJan 5, 2024
@nixCraft yolo
Show threadBonkersJan 5, 2024
@nixCraft the last one, unless it's enforced by the customer's policy
Show threadFrank AbelbeckJan 5, 2024

@nixCraft None.

I use 'su -' to summon root.

Show threadnixCraft 🐧Jan 5, 2024
@frank this is one is for you 😂
Show threadFrank AbelbeckJan 5, 2024

@nixCraft Aww.

Add a '-' (start as login shell with cleared and initialised env vars) and I'd pick 3.

Show threadDarren MoffatJan 5, 2024
@nixCraft pfexec (Solaris) usually in auth_profiles mode which means it prompts for authentication a bit like sudo
Show threaddeNiRoJan 5, 2024
@nixCraft I’ll stick to ‘sudo’ for now.
Show threadFreevoltJan 5, 2024
@nixCraft TIL there is a command called "doas." Seems like a good backup plan to log in to another account before f*cking up something so that I can hold its owner accountable.
Show threadberJan 5, 2024
@nixCraft what about init=/bin/bash ?
Show threadArnaud LaunayJan 5, 2024
@nixCraft Just biroute.
Show threadtheslik  Jan 5, 2024
@nixCraft
I run every privileged command as pid 1 with init=/bin/prog kernel parameter.
Show threadOS/1337Feb 2, 2024
@theslik @nixCraft yeah, that made earlier builds of OS/1337 crash!
Show threadheybalesJan 5, 2024
@nixCraft I always boot into single user mode.
Show threadalex  now on shonk.phite.roJan 5, 2024
@nixCraft write your own kernel with no users, where everyone has full 777 perms on everything
Show threadinfinite „Real Life“ healthJan 5, 2024
@nixCraft you can’t get hacked if you have no user account to access 
Show threadf69kedJan 7, 2024

@nixCraft

what’s a user

Show threadnikoJan 7, 2024
@nixCraft
depends on the system
if it’s a server where the default user account is root then the last one (shut up)
if it’s a system where it makes me make a user then always sudo
Show threadMartinJan 8, 2024
@nixCraft i am 3
Edit: just realised that needs context 🧐
Show threadCegorachJan 8, 2024
@nixCraft su -
Show threadTetraFeb 2, 2024
We are going backward in security practices