welp, I still need to add myself to the sudo group and sudoers file, and that’s something I need a root shell for. (unless I always miss some options during setup to make my user automatically a sudoer)
You did. If you leave your root password blank it’ll automatically add the user account you create in the following step to sudo and disable the root account.
If you want to have both a root account and a user account with sudo, you’ll have to do that manually, but that’s a pretty unusual setup.
Yeah, general practice is to either elevate privelige by switching accounts, or by using sudo. Having both just increases your attack surface to no practical benefit (especially since you can technically still switch to a root account with “sudo - i” even if you’re going the sudo route).
I used mostly Windows systems primarily and I guess I just adapted that habit of having an Administrator account for when shit goes down, and my own user account that has admin rights.
It’s just convenient. I liked my Administrator account as clean as possible, and I do the same in Linux with root. There is its time and place where I need root.
But you are right, I should change my habits. I’m not even sure how sudo and rights and environments and sessions and god knows what works exactly behind the scenes, so probably, maybe, there are technical differences too in the way I use these and the way how I should… I don’t know.
welp, I still need to add myself to the sudo group and sudoers file, and that’s something I need a root shell for. (unless I always miss some options during setup to make my user automatically a sudoer)
You did. If you leave your root password blank it’ll automatically add the user account you create in the following step to sudo and disable the root account.
If you want to have both a root account and a user account with sudo, you’ll have to do that manually, but that’s a pretty unusual setup.
oh wow, I did not know this
Nor this, but you are right if I think about it.
Yeah, general practice is to either elevate privelige by switching accounts, or by using sudo. Having both just increases your attack surface to no practical benefit (especially since you can technically still switch to a root account with “sudo - i” even if you’re going the sudo route).
I used mostly Windows systems primarily and I guess I just adapted that habit of having an Administrator account for when shit goes down, and my own user account that has admin rights.
It’s just convenient. I liked my Administrator account as clean as possible, and I do the same in Linux with root. There is its time and place where I need root.
But you are right, I should change my habits. I’m not even sure how sudo and rights and environments and sessions and god knows what works exactly behind the scenes, so probably, maybe, there are technical differences too in the way I use these and the way how I should… I don’t know.
Anyway, thanks for the info.