linuxmemes @lemmy.world 0x4E4F @sh.itjust.works 2mo ago

Newbies never listen...

111

111 comments

Real pros shuffle across the carpet to build a static charge and do their system administration by electrical fault injection.
- REAL pros use butterflies!
  
  https://xkcd.com/378/
  
  Dammit, emacs.
Still not as bad as chmod -R 777.
- Once had a friend run sudo chmod -R 777 / on a (public) Minecraft server we were running back in highschool. It made me die a bit on the inside.
  
  Doesn't it break a lot of things? Half the stuff refuses to work when some specific files have too permissive chmod.
  
  Goodbye ssh access
- As a one time noob I may have done this once or more.
  
  To get one thing working I borked everything.
  
  Understanding permissions is pretty basic. But understanding permission requirements for system and user apps and their config and dirs can be a bit overwhelming at first.
  
  Thinking a little change to make your life simpler will break something else doesn't always register immediately.
  
  Shit, even recently, wondering why my SSH keys were being refused and realising that somehow i set my private keys world readable.
  
  Thank god SSH checks file and dir permission.
- Jesus, every time I have to run glx or vaapi under a container I end up having to do this then cringe.
  
  from the chmod or from the containers?
  
  You don't need to
just worked a job where I did not have privlages to sudo commands. except su. had to sudo su so I could run a script.
- Could you not just use root to give your user sudo? Seems like a pretty dumb restriction
  
  Possibly but my role was such Im really only supposed to be working on my project and not monkey with the server which is used by other projects. I don't think it was a restriction I think it was just laziness by whoever set it up.
Come on! I've stopped logging on as root, can't we just leave it at that?
- Stopped being fun after you destroyed the system a few times... am I right 😏.
sudo steam
then at first day of work:

just use sudo su, we don't have all day here.
- And you give them the look and they shut up.
- "You're absolutely right, we wouldn't want to take too long to break the network or open god rights vulnerabilities"
I'm in jail because I was not in the sudoer file
- This incident was, in fact, reported.
- Well, you were warned 🤷.
Sometimes your package manager asks you for root password every minute while doing few hours long update and cancelling process if you don't enter anything for few minutes, "yay" aur manager looking at you, and you got to do other things than sit and look in the monitor all day long, things like cleaning house or touching grass for example
- sudo visudo
  
  At the end:
  
  Defaults:USER timestamp_timeout=30
  
  USER is obviously changed to your username.
  
  Thank you
- If I remember correctly the default sudo timeout is set to 5 minutes on Yay, you should be able to increase it to something more reasonable
  
  Thank you
- See, this is why I love xbps. Does everything in one blow, no bullshit.
- Man if only there was an option like --sudoloop to ensure that doesn't happen
Reminds me of all of those vendors that require Windows Admin for no reason.
- Looking at you quickbooks network shares...
  
  Its not like QuickBooks are sensitive data or anything
sudo -s for auditability
Our crappy vendor software will only function if IPv6 is disabled network wide. Even if one machine has it enabled, the whole thing breaks

Lol our former crappy vendor solution required to be run directly from AD Administrator. Pure luck the entire business didn't collapse before we replaced it.

A thread I read a long time ago on r/sysadmin
- That's at least once a week
Wasn't it 2017 where they had the race condition in sudo su as the command elevates up to root and drops back down?

Every other year, sudo su was not unsafe but merely ghetto. 'sudo su' is the dutch-rudder of 'sudo'.
Reminds me of software saying to put your docker socket into the docker container you are starting for convenience.
- Oh yeah, I'm docking the shit ot of that container!
run0 is the new sudo su
- You're going to start a fight with the doas people.
  
  And the people that don't use systemd.
chmod 777 /directory go brrrrrrrrrrrr
- You mean sudo chmod -R 777 /that/path/I'm/trying/to/share ?
  
  Ya probably. I’m dumb enough to type that in and just see what happens 😎
Why does sudo su exist? sudo -i does exactly what you want.
- It's much easier to type sudo su 😅
Guilty as charged, officer.
- I bet you distro hop a lot.
sudo vi
- Yeah. After that everything can be done with !sh.
  
  (Edit: This is a joke. There's a lot of reasons not to do this.)
  
  sudoedit is what you're looking for. Don't elevate the text editor.
- sudo -s vi &
sudo !!

:p
Tell me you use Ubuntu without telling me you use Ubuntu.

Wait till you try this on Debian or non Ubuntu variants.
- I ask out of ignorance - why would it be different?
  
  Debian doesn't have sudo by default, you have to install it manually
  
  Not sure what they mean by "non Ubuntu variants" though since most other distros add it even when they aren't Ubuntu based
  
  Ubuntu uses Snaps for a lot of the software, thus, when you write sudo apt install firefox that is actually an alias for "install firefox from snap". Snaps get installed locally, not on the system (globally, for all users), but as a user, so you really can't do much damage when you actually didn't do anything to the system in the first place.
  
  Do sudo shit on any other distro that doesn't have a company behind it, see what happens.
sudo -u root bash ftw
- Missing the -i.
  
  The -i is not required.
- Or sudo bash
sudo -i ?
sudo su -c "man man"
Can't programs steal sudo access if the timeout isn't 0?
- If on a brand new rig, it's allowed.
  
  What?
Use Sudo -i instead. Sudo su is like cat file | grep pattern vs grep pattern file. You're wasting resources.
I'm partial to sudo bash myself 👌
sudo rm -rf /* what could go wrong? (don't try it)
sudo chmod +x * can solve it sometimes
sudo su - ?

111 comments