WelcomeWelcome | FAQFAQ | DownloadsDownloads | WikiWiki

Author Topic: sudo in v2.3 secure  (Read 3575 times)

Offline dogflap

  • Newbie
  • *
  • Posts: 5
sudo in v2.3 secure
« on: September 09, 2009, 06:36:56 PM »
Dear all,
       Please be kind, I don't know much and maybe this is not a problem but I note that when booting v2.3 as "tinycore secure" I have full root powers but no request for a password simply by prefixing commands with "sudo ". Using visudo to edit /etc/sudoers user tc to the same as root fixes this but then I can't install or use firefox.tz.  Any suggestion ?

      My main use for this live distro would be online banking.

Best regards dogflap.
   

Offline roberts

  • Retired Admins
  • Hero Member
  • *****
  • Posts: 7361
  • Founder Emeritus
Re: sudo in v2.3 secure
« Reply #1 on: September 09, 2009, 09:34:22 PM »
A live distro for online banking? I would not suggest such.

However, if that is your goal, a remaster with preselected applications, without the ability to dynamically load extensions, thus allowing no sudo would be in order.
10+ Years Contributing to Linux Open Source Projects.

Offline dogflap

  • Newbie
  • *
  • Posts: 5
Re: sudo in v2.3 secure
« Reply #2 on: September 09, 2009, 11:00:13 PM »
Dear Mr? Roberts,

       Thank you for your input. No doubt you are right.  My thought was a live cd is read only, my hard drive is disconnected (I use an icute i-swap mobile sata rack that makes this easy) and everything runs in ram so that worst case any nasties only last for a session.

Best regards dogflap

Offline dogflap

  • Newbie
  • *
  • Posts: 5
Re: sudo in v2.3 secure
« Reply #3 on: September 10, 2009, 12:34:56 AM »
Dear Roberts,

       could it be that you are in fact Robert S as in Robert Shingledecker ?
Please accept my appologies for any unintended slight.

Best regards  dogflap.

Offline bmarkus

  • Administrator
  • Hero Member
  • *****
  • Posts: 7183
    • My Community Forum
Re: sudo in v2.3 secure
« Reply #4 on: September 10, 2009, 02:07:55 AM »

A live distro for online banking? I would not suggest such.


Why? A live distro do not leave temp files, cache, etc. on a hard disk drive to recover sensitive data after use, less chance to get the original media, specially a CD to get infected, etc. Maybe I'm wrong, but for me it seems to be secure, at least as secure as an installed system.
Béla
Ham Radio callsign: HA5DI

"Amateur Radio: The First Technology-Based Social Network."

Offline Guy

  • Hero Member
  • *****
  • Posts: 1089
Re: sudo in v2.3 secure
« Reply #5 on: September 10, 2009, 03:26:04 AM »
Quote
a live cd is read only, my hard drive is disconnected

You can make a live CD with the programs you want.

http://wiki.tinycorelinux.com/tiki-index.php?page=Integrating_extensions

/modified-cd.html][removed due to policy violation]/modified-cd.html
Many people see what is. Some people see what can be, and make a difference.

Offline roberts

  • Retired Admins
  • Hero Member
  • *****
  • Posts: 7361
  • Founder Emeritus
Re: sudo in v2.3 secure
« Reply #6 on: September 10, 2009, 09:25:33 AM »
I believe the questrion was regarding the use of live cd, sudo, and dynamically loading extensions.
My suggestion, for an online banking,  was to make a remaster with preselected applications and then remove sudo. I can't see what is controversial about that.
10+ Years Contributing to Linux Open Source Projects.

Offline tclfan

  • Sr. Member
  • ****
  • Posts: 286
Re: sudo in v2.3 secure
« Reply #7 on: September 10, 2009, 11:38:34 AM »

A live distro for online banking? I would not suggest such.

Why? A live distro do not leave temp files, cache, etc. on a hard disk drive to recover sensitive data after use, less chance to get the original media, specially a CD to get infected, etc. Maybe I'm wrong, but for me it seems to be secure, at least as secure as an installed system.
In complete agreement with your comment that LiveCD should be just perfect for online banking, I just want to add that in fact it should be safer than installed system to use for this purpose.  With installed system you do not have the pristine state each time you boot and in fact you never knowif  any viruses, trojans, rootkits or keyloggers had a chance to implant themselves. Prticularly with Windows, where being connected to the Internet alone exposes you to these threats constantly. Antivirus tools are only effective to some extent, so you are never sure 100%. Rootkits hide beneath the OS and are not visible to trojan and virus detection software.
With LiveCD pristine state you do not have this uncertainty, as the exposure is reduced to only the current session and if you are not browsing dangerous sites before online banking, the online banking should be as safe as can be.
Fact is that password on sudo would further enhance security level and is therefore quite valuable. This is what the originator of this thread is asking for...

Offline jpeters

  • Restricted
  • Hero Member
  • *****
  • Posts: 1017
Re: sudo in v2.3 secure
« Reply #8 on: September 10, 2009, 10:30:16 PM »
You could always remaster without autologin with password set in /etc/passwd, etc/shadow.
There's a noautologin script; just make the iso.  
« Last Edit: September 10, 2009, 10:44:53 PM by jpeters »

Offline ^thehatsrule^

  • Retired Admins
  • Hero Member
  • *****
  • Posts: 1726
Re: sudo in v2.3 secure
« Reply #9 on: September 11, 2009, 07:28:27 PM »
No need to remaster: "noautologin" is available as a boot option