On 08.11.22 01:04, Jim Henderson wrote:
Everyone did, it seems. And of course using su is always an option. But consider that there are people who (for better or worse) will use sudo in automated processes as well - and who won't find out until their systems start failing.
I don't think the default configuration allows anything automated without password or such for anyone, so this will not be broken. And the good thing in this case is, that the "old" (now again current...) config needed the root password to become root. So everyone could just use "su" to fix up their systems and nobody got locked out. Wold the change have been the other way round (users password required before, now the root password), then it would have been way more likely to end up locking someone out of his own system
We should at least (at the very minimum) do them the courtesy of advertising it on the systems they're using so they know. To have it be a completely silent change in behaviour is just simply unacceptable to me.
I guess this is more or less universally agreed on ;-) and that's probably the reason why this was reverted quickly. I personally have no special preference: I'm using the "defaults targetpw" on SUSE systems and the "normal" setup on debian systems. But a change like that certainly needs a "loud" announcement :-) Have fun, -- Stefan Seyfried "For a successful technology, reality must take precedence over public relations, for nature cannot be fooled." -- Richard Feynman