Not to bad? So we just threat linux overall as a single user system or what?
reply> if your model is that linux is just about single-user desktops, this local exploit isn't too bad.
replyFor example, if you have passwordless sudo, you've already got a widely known LPE vulnerability lurking on your system.
Only for your user, and it means a keylogger on the system if it gets rooted can't pull your password to try on other machines. Personally I always either login as root or use passwordless sudo.
replyYubikeys are also surprisingly annoying when setup for the as well. A working developer just needs sudo a lot.
replyRealistically a "sudo button" would be handy, on the keyboard, with a display to show a confirmation pin for the request (probably also needs a deny button so you can try and identify weird ones).
hmm have i missed anything?
replyAny program on your computer can just run "sudo" to escalate itself.
reply