this post was submitted on 31 May 2024
-31 points (29.9% liked)

Linux

47933 readers
1192 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago
MODERATORS
 

Isn't it enough to just enter your password once to login, then receive a warning whenever you're about to do something potentially dangerous?

If it's such a big security risk, how come the most popular and widely used operating systems in the world and their users seem to be unaffected by it?

I guarantee, most new users coming to Linux from Windows/macOS are going to laugh and look at you funny if you try to justify entering your password again and again and again.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 8 points 5 months ago* (last edited 5 months ago) (2 children)

You do need to authorize admin action on Windows and it causes severe security issues, because people do it without thinking all the time.

You can also configure Linux to have this behaviour, but for security reasons it works differently out of the box. Also, some programs, such as many terminal emulators, can cache you PW so you don't have to enter it multiple times.

I use a U2F key for sudo and it's just one touch. One touch you need to sit in front of my computer for.

[–] [email protected] 3 points 5 months ago

Also, some programs, such as many terminal emulators, can cache you PW so you don't have to enter it multiple times.

Terminal emulators don't (or at least shouldn't) do any such thing. sudo itself is responsible for letting you do privilege escalation without password for some time after successfully passing once - whenever you run it and successfully authenticate, it saves your user id, current time and a session identifier (each open shell gets a unique identifier) into a file. Then, when you attempt to do anything, it will check this file to see if you've if you've authenticated within the last few minutes in this terminal, and only ask for a password if you haven't.

For more info, see man sudoers_timestamp