[quote=426871:@Tim Jones]Why on Earth would anyone warn against sudo? It’s much saner than straight up “su” and can be controlled very carefully via the /etc/sudoers and /etc/sudoers.d components down to specific apps/tools for specific users. If you have users who are afraid of sudo, they should either get a good book on Unix system administration or probably contact that South Florida real estate company …
My response to that post is “rm is simply a Unix tool, but can be highly abused if used improperly …” or “mv is simply a Unix tool, but can be highly abused if used improperly…”. Anything on a Unix-based system can be abused. Using sudo is the least probable issue for problems.
Plus, with my code above, how would your user know WHAT you are using? All of that would be compiled into your app and completely hidden from the users. Your app would completely hide the sudo side of things in much the same manner that gksu does. If they are afraid of sudo, they should be just as afraid of gksu and friends. Under the hood, the results are the same - someone gets elevated permissions. What they DO with those permissions is something you control in your app/tool.
Also, that whole post reads more like an “if you break it you can’t blame us” discord instead of providing real information for users (aside from the lite treatment of sudoers). Sorry if that feels like a slight, but it reads more like CYA than useful, usable information.
(BOFH) Bastard Operator From Hell since 1982 (SunOS, SCO, A/IX, DG/UX, IRIX, PTX, SysV, Ultrix, CTIX, and so many others …)
Linux hacker since 1993 (0.99pl12)
BSD386 hacker since 1995[/quote]
I’m no linux master, very far from it. I only know what other more experienced users/gurus tell me. With your background, obviously I have to listen to what you say, and what you say makes perfect sense. However, sudo is not installed on my distro by default, so users WOULD know about it since they’d have to choose to install it. I have it on my system…given the post I linked to, chances are good that most others don’t. As for using gksu, I don’t see how I have much choice, given the above-discussed various limitations. After a great deal of googling, it’s the only viable option I could find that accommodates the given issues, and in all other functions in my app it works flawlessly. Originally, I designed this app only for myself, but was made aware that others could benefit from it as well and that it belongs on the distro’s repo. That’s the only reason I am putting in the time & effort to figure all this out. I’m still very much a noob, so this has been incredibly difficult…but worth it to sure. Thanks for your input and time.