FAQ
Differences between revisions 14 and 15
|
Size: 2674
Comment: add some sudo questions
|
Size: 2717
Comment:
|
| Deletions are marked like this. | Additions are marked like this. |
| Line 28: | Line 28: |
| * authentication timeout | * authentication timeouts * fine-grained granting of privileges |
Contents |
Repositories
- How are the "-updates" and "-security" pockets different?
-updates includes things that have gone through the StableReleaseUpdates process, and contain various important bug fixes.
-security includes only updated packages that contain security-related fixes, and are built to not require anything from "-updates".
- How do I automatically install security updates?
Packages
Where did mod_security go?
- The license to mod_security did not allow for redistribution, so it was removed from Debian and Ubuntu after Dapper (6.06):
Strange Behavior
When I run ssh HOST sudo CMD..., I can see the password as I type it. How do I fix that?
There is no "tty" allocated when running commands directly via ssh, please add the "-t" flag.
Sudo
- Why does Ubuntu disable the root account and use sudo instead?
See RootSudo for a thorough discussion, but simply put, sudo offers many benefits including (but not limited to):
- protecting the user from accidentally damaging parts of the system
- providing a log audit trail
- preventing brute-force login and ssh attacks to a well known account
- authentication timeouts
- fine-grained granting of privileges
- If sudo authentication does not immediately expire, doesn't that allow for privilege escalation for malware and local users?
- Giving untrusted users access to your account or running untrusted code can allow privilege escalation via sudo, but Ubuntu does not (and by default cannot) provide protections against users running code as themselves. Some protections against these sort of attacks are:
- do not open files or run/install programs from untrusted sources
- enable locking of your screensaver
- using 'sudo -k' or 'sudo -K' to remove the timestamps (see 'man sudo' for details)
- adjusting timestamp_timeout in /etc/sudoers (using visudo) (see 'man sudoers' for details)
- using a virus scanner such as clamav on your files
- Giving untrusted users access to your account or running untrusted code can allow privilege escalation via sudo, but Ubuntu does not (and by default cannot) provide protections against users running code as themselves. Some protections against these sort of attacks are:
SecurityTeam/FAQ (last edited 2024-01-26 14:48:38 by sahnaseredini)