Todd C. Miller has been maintaining the #sudo codebase for over 30 years.
-
@spacehobo @pafurijaz
You van install and use doas in Linux Debian.
It's great. I recommend it.
But, KDE Plasma depend to sudo, so at the end you have both.@lautreg @spacehobo @pafurijaz
A desktop environment depends on sudo? So it doesn't work for regular/unprivileged users? -
@spacehobo @lautreg @pafurijaz
That is an idiotic assumption on a networked multi user system.User needs an admin? Call tech support, admin handles it remotely via ssh.
If the desktop assumes sudo, that might just end up with the user getting to talk to HR and IT security.
-
@spacehobo @lautreg @pafurijaz
That is an idiotic assumption on a networked multi user system.User needs an admin? Call tech support, admin handles it remotely via ssh.
If the desktop assumes sudo, that might just end up with the user getting to talk to HR and IT security.
@leeloo @spacehobo @pafurijaz
If the user isn't in sudo group, no problems. -
@leeloo @spacehobo @pafurijaz
If the user isn't in sudo group, no problems.@lautreg @spacehobo @pafurijaz
How can you depend on sudo, but then not have problems when the user doesn't have permission to run sudo? -
@lautreg @spacehobo @pafurijaz
How can you depend on sudo, but then not have problems when the user doesn't have permission to run sudo?@leeloo @spacehobo @pafurijaz
I prefer use doas.
But, if there is KDE, I must keep sudo, but I don't use it.
It's my personal computer.
Servers don't have desktop environments.In fact, I need the admin display challenge (that use sudo) when I change the theme for sddm, or lightm.
For people whis computer managed by me, they use doas because I teach them, if I think I can allow them to make some admin task.
-
@spacehobo @pafurijaz
You van install and use doas in Linux Debian.
It's great. I recommend it.
But, KDE Plasma depend to sudo, so at the end you have both.@lautreg @spacehobo @pafurijaz theres also 'run0' in SystemD
-
@lautreg @spacehobo @pafurijaz
How can you depend on sudo, but then not have problems when the user doesn't have permission to run sudo?@leeloo @lautreg @spacehobo @pafurijaz True they should not depend on sudo, they should depend on 'whatever' defined by some config that could be sudo like $EDITOR. sudo is not 'critical infrastructure', just a means to elevate privilege. You can do this without sudo, its a convenience util and maybe not even the right way to do things. I don't really know what to say to "having to call helpdesk when you need a patch". Aaanyway I hope someone supports, perhaps someone that needs sudo.
-
Todd C. Miller has been maintaining the #sudo codebase for over 30 years. This is exactly one of those cases where an entire critical infrastructure is held together by the work of a single volunteer who apparently can’t find anyone willing to sponsor him for some financial support. #opensource #linux #foss #GNU
@pafurijaz IBM alone should be sending him a million bux a year. #RedHat
-
Todd C. Miller has been maintaining the #sudo codebase for over 30 years. This is exactly one of those cases where an entire critical infrastructure is held together by the work of a single volunteer who apparently can’t find anyone willing to sponsor him for some financial support. #opensource #linux #foss #GNU
@pafurijaz we need a better way to charge corporations with buckets of cash, as opposed to folks on a shoestring.
Or just outlaw billionaires
-
@leeloo @spacehobo @pafurijaz
I prefer use doas.
But, if there is KDE, I must keep sudo, but I don't use it.
It's my personal computer.
Servers don't have desktop environments.In fact, I need the admin display challenge (that use sudo) when I change the theme for sddm, or lightm.
For people whis computer managed by me, they use doas because I teach them, if I think I can allow them to make some admin task.
@lautreg @spacehobo @pafurijaz
How did servers become part of this discussion? -
@spacehobo @lautreg @pafurijaz
That is an idiotic assumption on a networked multi user system.User needs an admin? Call tech support, admin handles it remotely via ssh.
If the desktop assumes sudo, that might just end up with the user getting to talk to HR and IT security.
@leeloo @spacehobo @lautreg @pafurijaz
``That is an idiotic assumption on a networked multi user system.''
Arguably running a desktop on a networked multi-user system is the idiotic decision. Or not using an immutable OS like #guix, which allows users to safely install their own package requirements, is the idiotic part?
Either way, the problem is architectural (and deep!), not with the desktop per se.
-
@leeloo @spacehobo @lautreg @pafurijaz
``That is an idiotic assumption on a networked multi user system.''
Arguably running a desktop on a networked multi-user system is the idiotic decision. Or not using an immutable OS like #guix, which allows users to safely install their own package requirements, is the idiotic part?
Either way, the problem is architectural (and deep!), not with the desktop per se.
@khleedril @spacehobo @lautreg @pafurijaz
"Or not using an immutable OS like #guix, which allows users to safely install their own package requirements, is the idiotic part?"How would corporate IT prevent people from installing non-approved software in that case?
-
@khleedril @spacehobo @lautreg @pafurijaz
"Or not using an immutable OS like #guix, which allows users to safely install their own package requirements, is the idiotic part?"How would corporate IT prevent people from installing non-approved software in that case?
@leeloo @spacehobo @lautreg @pafurijaz
That can be done. In the case of #guix, the guix application itself could be restricted to the admin user, or users in the sudo group.
-
Todd C. Miller has been maintaining the #sudo codebase for over 30 years. This is exactly one of those cases where an entire critical infrastructure is held together by the work of a single volunteer who apparently can’t find anyone willing to sponsor him for some financial support. #opensource #linux #foss #GNU
@pafurijaz The discussion of monetary support is missing the point.
If he's been supporting it for 30+ years, he is probably 50+ and due to retire sometime soon.
So what happens if he falls ill, or (hopefully not) dies? -
@rastilin @pafurijaz I don't see a likelihood of users or corporations being willing to pay for open source. If payment changes hands, that's a contract. And I'm sure that everyone wants a contract that protects them from anything that might go wrong.
@egoldblatt @rastilin @pafurijaz
IANAL, but I suspect in a lot of jurisdictions, if you charge for the software, you can't "disclaim the implied warranties of merchantability and fitness for a particular purpose", as GPL has it.
-
D dentaku@fnordon.de shared this topic
