You can tell because it suggests Linux isn’t for gamers but Valve has its own game console that runs on Linux. It’d be pretty stupid if a game console couldn’t run games.
Have downloaded 10k songs in the last week, at 160GB so far, 22,000 total. Synced all to my phone with media monkey. Ditching any subscription services.
That also helps linux. Tried watching something on someone else’s peacock account logged into Linux, and got an error. Checked Google to see if it was available. A free site had it, in better quality streaming too! We ended up using her computer, but I was kind of amazed.
Poor Mauro: they weren’t good at what they loved, they blamed others for their failings, and their community leader was nuts.
Jokes aside, we’ve already got toxic right there. Linus isn’t right, but someone like that would be fired with good cause. It’s one thing to make a mistake, it’s quite another to blame your co-workers for your own shoddy work.
Alternatively you could use my favorite approach, Visual Studio Code. Just open the file with it, edit it and upon saving you will be promoted if the file needs admin rights to save.
Yes, but if you want to argue along those lines, you could also have an infected version of vim on your system just waiting to do malicious stuff until you give it sudo access.
No offense, but that sounds like more OCD behavior. 😅 I don’t need or want protection against myself, and I even loath the whole “that’s not how you’re supposed to do it”-mentality of linux (where when commands know very well what you want, instead of doing it, just tell you you forgot something). 😅
It’s not any OCD behavior, but simply the best practices. You’ve probably at least minimally familiar with the principal of least privilege? The idea is to minimize scope of a potential problem , was it malicious attack or user error, by restricting access to minimum required to perform a task. It may feel like fighting pedantically (and I’ve been fighting this more than I’d care to) but it will save your ass one day.
Sure, but sudo is specifically designed with security in mind as a security program, whereas text editors are not (although I am more likely to trust vim than vscode). Running a malicious program as the user and not as root can help mitigate the impact it could do, even though it will still be able to do a lot as a user.
What do you mean get root itself with a modified su? A program that has been run as a user cannot just get root permissions, that’s called a privilege escalation attack and is a serious vulnerability in the kernel which gets fixed quickly when found.
Of course it applies to any software, but some programs are more vulnerable than others. For example, when you want to have cryptography in your program, you use an established library, not write the algorithms yourself, because those libraries were written with security in mind (i.e. have protections against different kinds of attacks, for example, side channel attacks, in addition to being implemented properly). The whole point is to minimize the surface of attack, so that your system is more secure. And one way of doing so is to not give root permissions to programs that don’t need it (such as text editors like nano).
Yeah, well, as you said: it’s probably fixed by now, but I used to have a universal su that would work on any armv7 linux (so basically every phone back then, but also on my armv7 little laptop I had at the time…) with which I was able to easily root any phone by putting it in /data/local and making it bootable, then using full path to move any Android root files in place (though I did also just copy that su itself to /system/bin for root on cheaper phones sometimes, which is just playing with fire as it basically makes any root action unseen and allowed. 😂). That did work for years though, but that’s probably cause Android minimizes the linux and never actually updated the kernel so much, and the laptop’s flashed OS was something altered with also very little updates. And ARM was still quite new to the public too. 🤷♂️
I remember I came across it in the rooting package for my Kindle Fire and only found out it could do that by accident,… 😅 It couldn’t change user, though, it had only 1 use without parameters, which resulted as if you do a ‘sudo su’ if you remove the sudo password-requirement.
Hence why I used the example. I wasn’t being limitative to it, though. There’s so many things that could screw you if it has a vulnerability, if it happens I very much doubt it’ll be through nano, though.
Again, like I replied to the other comment, most of the programs you need root for are designed with security in mind and are inherently more secure and have less vulnerabilities than a non security focused program (that is not to say that it is impossible for a security program to have vulnerabilities -it certainly occurred before and keeps occurring- they just have a lot fewer). But even if you need root permissions for a non security focused program, you still shouldn’t let any program have it, the whole point is to minimize the surface of attack.
sudoedit opens the editor as your user and just writes the file as root. For a single user who is also admin on the system this does not matter in many cases.
In a multi user context you can easily escape your editor and run a shell which allows a non admin user to escalate their privileges. So from a security implementation standpoint this must exist and it does for this reason.
Of course this also prevents some mistakes from happening and a bad plugin cannot destroy your whole system easily and so on. It boils down to good practice.
sudo is not simply a tool to give admin privileges, but a tool to manage elevated permissions or run commands in a different users context.
These things become a lot more relevant once you use the tools professionally. In a well configured system you are only allowed to run the things you are explicitly allowed.
To be completely honest sudo is basically pointless in a single user context. There is almost no reason to even have it installed. It makes dealing with different environments easier though.
Anyway as I said it does not matter in many cases if you are the systems administrator. On the other hand there is also no benefit in getting used to bad practices in case you have to unlearn them later.
One more thing: what you suggest with chroot is one of the very reasons why you should not do that. You might have handed over the keys to break out of chroot. It is a well known vector which boils down to never run anything as root in a chroot environment.
I appreciate all the answers on what started out to mostly be a joke (the first comment, I’m not saying the rest was, I actually do mean my follow-up discussions and am enjoying them more than I should). 😅
Anyway, first I must disagree with sudo being useless in a single-user environment since some services have non-user (nologin) accounts as which you still need to run things sometimes, so sudo is commonly useful in single-user environments (though you could technically go set bash for those, I suppose.)
But yeah, I’m already used to “bad practices” as I have been using linux for 24 years now (when it still was it’s predecessor ‘pico’ 😅) (I said over ‘10’ years in an earlier comment, but I just realized I’m 40 and still calculated from 30. 😂 Wishful thinking. 😅) in what is assumed a bad practice, not only without any problems, but even because it never gave me problems.
Might be an age thing too, but I hold on to ease of use over best-practice, especially if it hasn’t failed me in two decades and a half. I think it would take an actual attack on me abusing this behavior for me to stop doing it by now… And even then, I installed linux so many times in my life, even that seems more musclememory and not such a hassle anymore… 😅 At least I could make use of my backup system for once then… 😅
Doing sudo nano will not load your user configuration, sudoedit will. I had plenty of problems with this, but I assume you don’t have any custom configuration.
6 years ago, I was using a USB wifi adapter with my desktop (my friends next door paid for internet and we paid them half the bill to share).
I had picked this wifi adapter specifically because it had linux support, even though I used windows (I had an inkling I’d switch). So, I tried to switch but upon boot I couldn’t wifi because the adapters module wasn’t bundled by my distro so I had to instal ‘dkms’, but I couldn’t do that without an internet connection…
I had a similar experience trying to install a m.2 drive in my win7 PC. It needed a hotfix to work but Microsoft had taken down the downloads so I ended up finding out it was in an update pack from I think Lenovo’s website and pulled it out of that.
To get it to work in Windows I literally had to go to a website that was only Chinese, download a zip file, and extract a dll that would then work when pointed to.
It’s called manual driver install in Windows… pretty common with older hardware.
Most of those just go over Windows Update now or work with a generic driver that comes with Windows. Only really obscure drivers need manual installation.
This was true maybe 10 years ago, nowadays Linux has better driver support than Windows. Printers, networking, input devices, everything I’ve tried is plug n play with Linux, Windows you gotta driver hunt.
That would only add one extra process instance with each call. The pipe makes it add 2 extra processes with each call, making the number of processes grow exponentially instead of only linearly.
Edit: Also, Im not at a computer to test this, but since the child is forked in the background (due to &), the parent is free to exit at that point, so your version would probably just effectively have 1-2 processes at a time, although the last one would have a new pid each time, so it would be impossible to get the pid and then kill it before it has already replaced itself. The original has the same “feature”, but with exponentially more to catch on each recursion. Each child would be reparented by pid 1, so you could kill them by killing pid 1 i guess (although you dont want to do that… and there would be a few you wouldn’t catch because they weren’t reparented yet)
And on a modern Linux system, there’s a limit to how many can run simultaneously, so while it will bog down your system, it won’t crash it. (I’m running it right now)
Not if you have the DING plugin installed (can be installed either as a plugin from the store or from the repos as a system-wide one) then you can have the icons on your Desktop just like other OSes.
I’m amaze by how many people still use chrome based browser. They really want to get their face eat by a leopard. Well we told you people, there’s no reason left not to use firefox.
Chromium isn’t chrome, and there are reasons to use browsers not based on firefox, I like Vivaldi more than firefox way better customization and more features, but since Manifest V3 exists I am using firefox so I am already used to it if Google makes the other browsers shit
Workgroups, tab stacking, tab tiling, side by side view of multiple websites which you can interact with at the same time within one window, keyboard only control (if desired) and more.
Most or all of those are available in extensions and keyboard only I think is in stock FF but I can understand not wanting to install a million extensions to recreate that functionality. I was a die hard old school Opera user but just can’t bring myself to daily drive a chromium based browser.
linuxmemes
Top
This magazine is from a federated server and may be incomplete. Browse more on the original instance.