I wanted to know why making the command less accessible through sudo is a security risk? I don't see how it could be a security risk but I heard it can be a security risk, but why?

Thanks

I wanted to know why making the command less accessible through sudo is a security risk? I don't see how it could be a security risk but I heard it can be a security risk, but why?

Thanks

"sudo" in of itself is not really a security risk. If administered properly, there should be no issue.

Normally only "root" can install new applications and perform critical system functions. With "sudo" you can set certain users with specific rights to execute functions on a temporary root basis. If you run this way *all* the time, then you may as well post your passwords on a website along with your IP address.

It is a safe way for you to administer yourself and all other users on your system. You should never log on as root for day to day computing (like browsing, email, letter writing, etc.). The general consensus (regardless of OS) is the set yourself up with a regular account with limited privileges and log on as "root" or "admin" or whatever only when you really need to (and subsequently logging off as "root" when done). Sudo users are those that can be trusted with those rights, but you still have not sold the farm if they get silly.

As an example.... Viruses, malware, spyware can NOT install themselves on systems when the rights do not exist. Therefore, no virus/mal/ad/spyware checker is required when you follow painfully simple procedures like limiting rights, plain text emails only and diligence when using a browser (blocking ads, sifting cookies).

http://www.courtesan.com/sudo/intro.html

Sudo users are those that can be trusted with those rights, but you still have not sold the farm if they get silly.
http://www.courtesan.com/sudo/intro.html

Never underestimate the stupidity of users :nnk:
Linux doesn't try to prevent you from doing stupid things because it would then prevent you from doing clever things.
Actually one of the things that Sudo gives you is the abiltiy to have an audit trail of users performing sudo'd tasks.

Never underestimate the stupidity of users :nnk:
Linux doesn't try to prevent you from doing stupid things because it would then prevent you from doing clever things.
Actually one of the things that Sudo gives you is the abiltiy to have an audit trail of users performing sudo'd tasks.

If I'm going to do something clever, I would log in as root "su -" ;)

If I'm going to do something clever, I would log in as root "su -" ;)
I've been using Ubuntu for so long now, I tend to forget the root account!:ntm: