this post was submitted on 03 May 2024
986 points (97.0% liked)

linuxmemes

20986 readers
1622 users here now

Hint: :q!

Sister communities:

Community rules (click to expand)

1. Follow the site-wide rules

2. Be civil
  • Understand the difference between a joke and an insult.
  • Do not harrass or attack members of the community for any reason.
  • Leave remarks of "peasantry" to the PCMR community. If you dislike an OS/service/application, attack the thing you dislike, not the individuals who use it. Some people may not have a choice.
  • Bigotry will not be tolerated.
  • These rules are somewhat loosened when the subject is a public figure. Still, do not attack their person or incite harrassment.
    • 3. Post Linux-related content
  • Including Unix and BSD.
  • Non-Linux content is acceptable as long as it makes a reference to Linux. For example, the poorly made mockery of sudo in Windows.
  • No porn. Even if you watch it on a Linux machine.
    • 4. No recent reposts
  • Everybody uses Arch btw, can't quit Vim, and wants to interject for a moment. You can stop now.

    • Please report posts and comments that break these rules!

    founded 1 year ago
    MODERATORS
    poopsmith@lemmy.world
    zephyr@lemmy.world
    rtxn@lemmy.world
    986
    Security (discuss.tchncs.de)
    submitted 5 months ago by smileyhead@discuss.tchncs.de to c/linuxmemes@lemmy.world
    133 comments fedilink hide all child comments
     
    you are viewing a single comment's thread
    view the rest of the comments
    [–] r00ty@kbin.life 80 points 5 months ago (3 children)

    Here's the problem. So many legitimate things need elevation, and often multiple times in a single install. Guess what most Windows users do, when they see an elevation prompt. What do you reckon?

    [–] DrGunjah@lemmy.world 40 points 5 months ago (1 children)

    Honestly I don't think it's that bad. I have to use sudo just as often on linux as I have to accept the elevation box on win. Win11 has some serious issues but UAC is harmless.

    [–] r00ty@kbin.life -5 points 5 months ago (2 children)

    Sudo is very different. You need to explicity enter your password. It may be cached for a short time and I'd argue that's actually better.

    If I'm installing something, it asks for my password once but can then raise to root multiple times that's fine.

    If I'm installing something and it asks for elevation three times, for example it needs to Install multiple drivers. It generates an automatic click when installing for many unexperienced users. It's dangerous imo.

    It can't really be compared to Sudo.

    [–] glitchdx@lemmy.world 24 points 5 months ago (2 children)

    Sudo is just clicking "ok" with extra steps, thus making adding and removing programs more annoying, thus meaning the common user will probably just be logged in as root all the time. I challenge you to change my mind.

    [–] Burninator05@lemmy.world 4 points 5 months ago

    As a Linux beginner who has a couple of false starts into it being my daily driver I'll say that there are two stumbling blocks left for me. Permissions "issues" is the bigger problem and some programs not being as fleshed out is the other.

    [–] Sonotsugipaa@lemmy.dbzer0.com 4 points 5 months ago

    That's exactely what happened in my mind when I was getting started with Linux (kind of), although it's arguably a habit that comes from using Windows where people don't really think about OS users and permissions

    [–] DrGunjah@lemmy.world 13 points 5 months ago (1 children)

    So you think a person that would turn off UAC wouldn't just put NOPASSWD in the sudoers? I doubt that. And even if they had to enter their pwd... Wouldn't that just be annoying for the casual user instead of increasing security? I doubt they would be like "Oh I have to enter my pwd now, that really makes me think twice about whatever I was going to do with sudo."

    [–] IzzyJ@lemmy.world 4 points 5 months ago

    Can confirm, have borked my sysyem this way

    [–] ReveredOxygen@sh.itjust.works 4 points 5 months ago (2 children)

    if you give elevated permission to movie.mp4.exe, that's natural selection

    [–] r00ty@kbin.life 10 points 5 months ago

    I feel like there's a lot of misunderstanding about what I'm trying to say.

    I'm saying the average windows user will begin to get fatigue when some installers ask for elevation 3 times (maybe more). They'll end up just pavlovian clicking OK whenever that prompt appears. Which ends up circumventing the whole reason the prompt exists.

    [–] deaf_fish@lemm.ee 6 points 5 months ago (1 children)

    I don't know. Not everyone who uses a computer should be an expert. Not everyone is 100% alert all the time. I know there has to be a line somewhere.

    I feel like it would be really easy to have the OS check if the exe is appended to some other extension and force the user to rename it before allowing it to be executed.

    [–] captain_aggravated@sh.itjust.works 3 points 5 months ago

    There has to be a level of "competently trained user" in there we can strive for. I think we were getting there about the time I was in high school circa 2003, where every last one of us could format an MLA essay in MS Word and do an autosum in Excel.

    Something that put me off of Microsoft products for a decade before I switched to Linux was their constant rearranging of the UI, requiring users to re-learn how to do basic tasks that worked just fine.

    [–] brygphilomena@lemmy.world 1 points 5 months ago

    Often they don't. If more granular permissions were to be used. Hklm/programdata needing admin to do anything in it for example. Putting permissions on hklm/software/package to write is enough to make a lot of software work without opening up the whole system.