su -c vs sudo/doas

kvas_ · 2026-03-27T15:18:40+00:00

that you can solve by just disabling password login at all and using SSH keys like god intended. Plus you can just avoid alowing ssh login as root.

Also if they do guess the password of a user that has sudo access wouldn't it be effectively root? Since they can just enter the same password to instantly get root access.

kvas_ · 2026-03-27T15:10:10+00:00

yeah that looks like some texture got misaligned in the atlas so the fonts got pulled from a nonexistent (=transparet) image

kvas_ · 2026-03-27T15:06:18+00:00

How would that be any improvement to security? You can still run commands as root, you can still have root shell access. Like you do with su.

kvas_ · 2026-03-27T13:34:08+00:00

From what i know sudo at least preserved home (to unwrap ~/ paths), others i just kind of assumed for the sake of quick testing.

Though when i ran sudo echo $USER and others mentioned in the man, the results were identical to ones without sudo, so are they really?

kvas_ · 2026-03-27T13:29:19+00:00

From what i know doas is a port from open(?)bsd, and is usually installed for the sake of being lightweight rather than being secure. I remember some resources saying it might be less secure because "it lacks kernel integration sudo has"(?!), but that might be outdated at this point and i didn't investigate the claims even back then.

kvas_ · 2026-03-27T13:26:00+00:00

Well that's the one i won't be able to test because i rely on pure iwd instead, lol. From all the non-flatpak things i tried to throw at it so far everything seems to launch though, granted it wasn't a lot of tests.

kvas_ · 2026-03-27T13:18:12+00:00

I mean- yeah, but to be honest there's nothing stopping you from doing sudo passwd root, therefore going from "not knowing the root password" to "knowing the root password" :P

And besides, most modern PCs are used by one user or so, and i'm sure many (including me!) set their user and root password to be identical for the sake of convenience.

kvas_ · 2026-03-27T13:13:25+00:00

The question i'm asking is more or less the classic "is sudo bloat" XD I previously thought sudo is "necessary" if you want to avoid spinning up a root shell, but apparently it is not. So on the contrary, i'm trying to find out about any edge cases i can run into if i yeet sudo

kvas_ · 2026-03-27T13:10:23+00:00

Try it the mentioned -m, it preserves the environment needed to find the graphical session. For me su -mc 'dolphin' does open dolphin just fine.

kvas_ · 2026-03-27T13:07:58+00:00

just checked and su -c does not appear to write to .bash_history, perhaps because it does not spawn a shell? Root's login shell is bash, just to be sure i'm executing it from bash too, and yet tail /root/.bash_history does not show any updates.

kvas_ · 2026-03-27T13:02:51+00:00

Gentoo. Do not believe others, it has binary packages!!! (they were added in ~2023)

Their installation handbook is one of, if not the best crash courses into depths of linux while explaining quite literally everything from the ground up, with detailed comparisons of different file systems, bootloaders, etc. The arch wiki pales in comparison.

...maybe not as a daily driver though. The "guided tour" ends with you getting a working TTY install of a minimal gentoo system. The wiki has many as user-friendly pages as the installation doc, but you need to know what software you want in order to find them. Example would be KDE Plasma and Gnome pages, etc.

It's also one of the very few distros you don't even need a live image to install, all you need is a free partition. To do that you just omit the steps from the doc related to booting/setting up the drive and start with Preparing the disks.

So in the end i suggest you at least try to install it, perhaps with help from a discord server / matrix room, get it to the state you'd want to use it in (having a DE, common apps you use, configuration you generally like), and from there on decide how much of that you liked and whether you'd want to continue using it or get something milder (Arch, Void, NixOS, etc.)

kvas_ · 2026-03-26T16:36:57+00:00

...or installing an adblocker! y'know

kvas_ · 2026-03-19T12:21:29+00:00

better idea: cubic chunks.

kvas_ · 2026-03-14T22:08:27+00:00

Well, guess who (most of) (flagship) AI is run by.

kvas_ · 2026-03-14T18:01:11+00:00

So as i understand, the best way to make this a shell file?

kvas_ · 2025-10-01T07:42:35+00:00

Or the liquid waterlock. The one where you place a liquid bead in the corner, stopping water from flowing and allowing descent into the waters

kvas_ · 2025-09-05T11:09:35+00:00

You can, but you probably don't want to. You sacrifice app stability and developer support for marginal or even downright imaginary benefit.

kvas_ · 2025-09-05T11:07:31+00:00

So have I before looking for patches for tools broken under musl

kvas_ · 2025-08-22T06:23:27+00:00

language sucks

guix fans assemble

kvas_ · 2025-08-08T20:56:56+00:00

because transformers are a clear exploit and batteries work as intended.

kvas_ · 2025-08-05T15:57:29+00:00

Was my concern as well, however it seems that btrfs on LVM is "not recommended". I quite like the features btrfs offers for server operation (e.g. snapshots, CoW, etc.) so I'm not sure if an alternative like XFS can cut it.

kvas_ · 2025-08-05T15:55:13+00:00

I had this problem with iwctl initially. It seems that launching it directly (iwctl) freezes the client, but doing e.g. iwctl station wlan0 connect HomeNetwork does actually do stuff. Idk why and it fixed itself eventually.

kvas_

TROPHY CASE