• just_another_person@lemmy.world
    link
    fedilink
    arrow-up
    17
    arrow-down
    3
    ·
    7 months ago

    Somebody call the Wahhhmbulance. This guy is outmoded. How about expanded security permissions for small groups of people in a larger directory? How about PAM auth plugins? How about escalation preventiontion for those same people, PLUS auditing instead of just seeing “root did something dumb”.

    I don’t even get why this gent even bothered to wine and complain about this except that he doesn’t “get it”. This has been a solved issue for over 20 years now, and you don’t see large swathes of folks removed and moaning about sudo at all.

    • 7heo
      link
      fedilink
      arrow-up
      15
      arrow-down
      1
      ·
      7 months ago

      If you need to provide tools that cross security boundaries then […] a small web app is better [than sudo].

      A web app? Effin really!!? 🤨

      • GenderNeutralBro@lemmy.sdf.org
        link
        fedilink
        English
        arrow-up
        11
        ·
        7 months ago

        This is the part that confused me most. At the first mention of web apps, I just thought, okay, if you have a web server you can have it run under a service account that can do what it needs to do. Sure. Kind of beside the point, but sure.

        Then this came at the end and and I did a double-take. He’s really suggesting a web app as a substitute for sudo in general? Two questions:

        1. Wat?
        2. Wut?