Dev1 Galaxy Forum / HOWTO: Post-Installation Configurations

Re: HOWTO: Post-Installation Configurations

dummy@example.com (quickfur) — Fri, 13 Sep 2024 23:14:26 +0000

I'm running a single user system, and I use both su and sudo. sudo for small commands, su for more elaborate system management.

I never login as root; that's highly not recommended because of the amount of code that runs when you login, esp. on a graphical desktop; all of that would be running with root privileges, which is very dangerous.

Re: HOWTO: Post-Installation Configurations

dummy@example.com (unixuser) — Fri, 13 Sep 2024 21:36:05 +0000

For single user system, you guys recommend using only "su" ? or doas ?

Re: HOWTO: Post-Installation Configurations

dummy@example.com (EDX-0) — Mon, 15 Jul 2024 07:46:51 +0000

i'd say it is better to use sudoedit after running update-alternatives --set editor /usr/bin/vim (or nvim), also editing the sudoers file and being able to use sudo without password is a hell no!

as for other controversial post installation configurations there exist my scripts https://github.com/eylles/devuan-scripts and there are a couple more that will still be added...

Re: HOWTO: Post-Installation Configurations

dummy@example.com (nahkhiirmees) — Sat, 22 Jun 2024 13:32:55 +0000

UFW (Uncomplicated Firewall)

If you have rules you're happy with, there's also netfilter-persistent and iptables-persistent.

sudo disease

I don't think sudo in itself is a disease. But that "ALL=ALL NOPASSWD"-thing definitely is.

Re: HOWTO: Post-Installation Configurations

dummy@example.com (peterrooney) — Fri, 21 Jun 2024 20:51:35 +0000

Entirely aside from philisophical issues with sudo,
NEVER EDIT THE SUDOERS FILE DIRECTLY.
instead, read the man page before trying 'EDITOR=/bin/nano visudo` instead. There are ways to set the order of preferred editors. Read the man page because if visudo suspects anything wrong when nano exits, it does not give you choices or reminders, but instead expects you know which keys to press.

Re: HOWTO: Post-Installation Configurations

dummy@example.com (vlax) — Wed, 08 Jul 2020 17:09:45 +0000

hola Macondo

macondo wrote:

After installing Devuan, the first thing I configure is sudo.
...
ditto as above.
Next, aliases make my life easier,
...
UFW (Uncomplicated Firewall)
...
Startup
To start your apps and window manager: go to .xinitrc as USER,
...
# updatedb
So later I can use 'locate'

everything is useful indeed, thanks

Re: HOWTO: Post-Installation Configurations

dummy@example.com (fog) — Tue, 10 Oct 2017 18:50:12 +0000

sudo history is a bit older than linux not to mention ubuntu. sudo development is/was maintained by OBSD (although OBSD uses mainly doas rather than sudo nowdays) however system is as secure as one make it.

Re: HOWTO: Post-Installation Configurations

dummy@example.com (boycottsystemd) — Sun, 08 Oct 2017 16:14:38 +0000

thanks @fsmithred

Re: HOWTO: Post-Installation Configurations

dummy@example.com (garyz.dev1) — Sun, 08 Oct 2017 00:00:04 +0000

@greenjeans wrote:

Never understood the use of sudo, on a list of "worst ideas ever for linux" it ranks right up there with dconf and systemd IMO.

'
well - as I understand it - Linux is a multi-user system - so someone has to be the boss/admin
Now it is true that most linux downloads are most likely for single user/desktops - so root/sudo becomes a grey area.: IMO
Not sure what the answer is - there is a lot of debate about it
'
I am not taking a stand on it

garyz

Re: HOWTO: Post-Installation Configurations

dummy@example.com (macondo) — Sat, 07 Oct 2017 23:58:13 +0000

Re: HOWTO: Post-Installation Configurations

dummy@example.com (garyz.dev1) — Sat, 07 Oct 2017 23:54:21 +0000

thanks @macondo
I didn't have the NOPASSWD in the sudoers file,
(fwiw - I had to 'sudo visude' to modify the file !)

Re: HOWTO: Post-Installation Configurations

dummy@example.com (macondo) — Sat, 07 Oct 2017 23:49:09 +0000

With this:
ALL=NOPASSWD:ALL

you need NO passwd...

Re: HOWTO: Post-Installation Configurations

dummy@example.com (garyz.dev1) — Sat, 07 Oct 2017 23:43:14 +0000

sudo - so what do you use for root priviledges??
(I used sudo before I used ubuntu)
I'm in the sudoers file but still have to do the password from time to time
[with the ALL settings in sudoers!}

Re: HOWTO: Post-Installation Configurations

dummy@example.com (fsmithred) — Sat, 07 Oct 2017 19:04:36 +0000

There is no default firewall front-end installed in debian or devuan. There is iptables, but no rules are in place. If you install some services that listen for connections, then you will have open ports. (examples: openssh-server, mysql-server, apache2, samba)

If you're behind a router, the router is being scanned, and unless you set up port-forwarding in the router, the outside world can't see the open ports on your computer.

Re: HOWTO: Post-Installation Configurations

dummy@example.com (boycottsystemd) — Sat, 07 Oct 2017 09:52:06 +0000

UFW (Uncomplicated Firewall)

Does Devuan Jessie have any default firewall ? I did not install any and I got this result in test:

Your system has achieved a perfect "TruStealth" rating. Not a single packet — solicited or otherwise — was received from your system as a result of our security probing tests. Your system ignored and refused to reply to repeated Pings (ICMP Echo Requests). From the standpoint of the passing probes of any hacker, this machine does not exist on the Internet.