I am an independent contractor specializing in Unix systems administration and software development with a particular interest in FreeBSD. I am the maintainer of the Tenacity, Librewolf, and Xerces-C packages for Termux, an Android terminal emulator and Linux environment.
By sponsoring my work, you can help support open source software development!
- 🔭 I’m currently working on a Termux package of the Password Safe password manager.
- 🔭 I'm also working on the next release of my ChatGPT client OpenAI Assistant.
If you are on Ubuntu (or what ever) with passwordless, unlimited sudo, that's bad practice. Edit your /etc/sudoers to require your password. Please.
Quotes from Michael W. Lucas' book Sudo Mastery, 2nd ed.:
"Broadly disabling sudo authentication is unwise. Yes, it's certainly convenient. Also, any intruder or application that gets a command prompt or access to your account also gains total access to all of your sudo privleges. If you're running a Linux variant that gives the first user full root access via sudo, then the rougue process will completely own your machine."
...
"Disabling sudo authentication is equivalent to deliberately implementing the Windows 95 security system."
As Lucas points out to anyone too young to remember: "Windows 95 had no security system."
(Quoted with author's permission.)