Dear systems engineers,
It really amazes me how people are fine with typing
sudo all the time. A kitten is denied a new toy for another day when you do this!
Typing sudo locally all the time
Is it really simpler for you to type sudo all the time rather than having one terminal tab open with a root shell? Besides, some systems even ask for a password when you run a sudo command. Be honest with yourself, are you a masochist?
Using sudo on servers
Intro: each Amazon image comes with standard username for logging in. Never seen anyone changing that username.
Supposedly, the attacker would need to know the username in addition to your stolen private key. Right… and it’s not one of these: ubuntu, admin, ec2-user, centos … and looking at your ssh banner won’t give any clue as to which username is used:
View original post 220 more words