From owner-freebsd-questions@FreeBSD.ORG  Fri Apr  6 05:21:42 2007
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 9ADC416A405
	for <freebsd-questions@freebsd.org>;
	Fri,  6 Apr 2007 05:21:42 +0000 (UTC)
	(envelope-from erik@cepheid.org)
Received: from mail.cepheid.org (wintermute.cepheid.org [64.92.165.98])
	by mx1.freebsd.org (Postfix) with ESMTP id 7BD9413C46E
	for <freebsd-questions@freebsd.org>;
	Fri,  6 Apr 2007 05:21:42 +0000 (UTC)
	(envelope-from erik@cepheid.org)
Received: by mail.cepheid.org (Postfix, from userid 1006)
	id B95EE170E7; Fri,  6 Apr 2007 00:21:41 -0500 (CDT)
Date: Fri, 6 Apr 2007 00:21:41 -0500
From: Erik Osterholm <erik-freebsd@erikosterholm.org>
To: Garrett Cooper <youshi10@u.washington.edu>
Message-ID: <20070406052141.GA73428@idoru.cepheid.org>
Mail-Followup-To: Erik Osterholm <erik-freebsd@erikosterholm.org>,
	Garrett Cooper <youshi10@u.washington.edu>,
	freebsd-questions@freebsd.org
References: <7d4f41f50704050142v9c73a17tb1812f218ea4416@mail.gmail.com>
	<8d23ec860704050147r7b7daef2k432bb20a27ae8098@mail.gmail.com>
	<e572718c0704050151h5f4a1b5el3359b21936d78b4a@mail.gmail.com>
	<8d23ec860704050154j7d0cfed5n631611f4afe32006@mail.gmail.com>
	<14989d6e0704050201s6be99be8m62aa6822299e0e6a@mail.gmail.com>
	<4615A83E.9040803@u.washington.edu>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <4615A83E.9040803@u.washington.edu>
User-Agent: Mutt/1.4.2.2i
Cc: freebsd-questions@freebsd.org
Subject: Re: Should sudo be used?
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 06 Apr 2007 05:21:42 -0000

On Thu, Apr 05, 2007 at 06:54:06PM -0700, Garrett Cooper wrote:
> b) sudo can run commands directly instead of having to type in su, and
> then run the command from the su'ed shell.

>From man su: 

If the optional args are provided on the command line, they are passed
to the login shell of the target login.  Note that all command line
argu- ments before the target login name are processed by su itself,
everything after the target login name gets passed to the login shell.

This lets you run commands without obtaining a full shell.


> Unless you're trying to get root access and fall under point b., and
> this is your own personal machine, there's basically no use in using
> sudo. Besides, one less binary on your machine with those sorts of
> privileges offers less methods of attacking your machine in order to get
> elevated privileges.

I like the logging ability.  If I fatfinger a command line, I can
easily go back and see exactly what I did(in case the output of the
command doesn't make it obvious), and when.

It's all personal preference, though.

> -Garrett

Erik