How to increase the security of your Linux system in 3 simple steps:
@lanodan some use-cases of doas like allowing some unattended users to execute specific commands as root is useful in production systems
In general I prefer to install doas for ease of use reasons
@lanodan yeah, this generally makes sense. But sometimes when you delegate with too much specialization you get things like that Ubuntu rootkit
@sir What's your reasoning for this? Is it because /etc/shadow, doas and /sbin/getty are less complex than their counterparts and hence less prone to errors?
@mezzodrinker yes, among other things
@sir What's wrong with PAM and sudo?
@mimi89999 incredibly fucking complicated, full of moving parts, very bad in a security critical component
Complexity is the biggest enemy of Security, full stop.
@sir must resist urge to say “just use openbsd instead”
👎 Shaved neck
@sir aka openbsd is thumbs up all the way
@sir fun fact: Linux port of doas uses PAM, deal with it
@yerinalexey it's optional dude
The social network of the future: No ads, no corporate surveillance, ethical design, and decentralization! Own your data with Mastodon!