upvote

points

by oconnore2 hours ago |
comments
upvoteby acdha1 hours ago|
next
[-]
> A production environment should usually be setup up properly with explicit roles and normal access control.

… and sudo is a common tool for doing that so you can do things like say members of this group can restart a specific service or trigger a task as a service user without otherwise giving them root.

Yes, there are many other ways to accomplish that goal but it seems odd to criticize a tool being used for its original purpose.

reply
upvoteby pphysch53 minutes ago|
parent|
[-]
PSA for anyone reading this, you should probably use polkit instead of sudo if you just want to grant systemd-related permissions, like restarting a service, to an unprivileged user.

It's roughly the same complexity (one drop-in file) to implement.

reply
upvoteby throw0101a1 hours ago|
prev|
next
[-]
> Why would you be running sudo in production? A production environment should usually be setup up properly with explicit roles and normal access control.

And doing cross-role actions may be part of that production environment.

You could configure an ACME client to run as a service account to talk to an ACME server (like Let's Encrypt), write the nonce files in /var/www, and then the resulting new certificate in /etc/certs. But you still need to restart (or at least reload) the web/IMAP/SMTP server to pick up the updated certs.

But do you want the ACME client to run as the same service user as the web server? You can add sudo so that the ACME service account can tell the web service account/web server to do a reload.

reply
upvoteby bigstrat20031 hours ago|
prev|
next
[-]
Almost everyone is running sudo in production.
reply
upvoteby bloqs1 hours ago|
prev|
next
[-]
the fact this is a reply to the content in the parent just demos the complete lack of social skills or empathy many in this community are known for
reply
upvoteby bobmcnamara1 hours ago|
prev|
[-]
Auditing.
reply