Work through sudo issue

[McUsr]

A bypass of password requiring sudo is tested, and done, from a service

I just wanted to add here, that though for now, the tar commands require sudo for running properly, and given that the scripts are run from the command line, the issue with being prompted with a password when you run it, is bearable.

Not so much for services, so, since I need root rights to execute tar, I'll probably give instructions as to how to set the setuid bit to root for the scripts in question, and configure the services to run with elevated rights, as a way to bypass, if you really really want to keep your sudo password.

For me, I see ChromeOs, as a rather large IP firewall, as my container is very safe from drive by attacks, and such, and I haven't set it up as an SSH server, with port forwarding, so I think having someone executing code, or even execute code with raised privileges to be less of an issue.

Now this doesn't cover me from downloading stupid, or malicious stuff or anything, but I don't see having the setuid bit on scripts that backs up to add to the problem, with the bit set, goes write protection, so, if someone wants to do a backup with elevated rights, from a malicious piece of code, then be my guest, this scheme, if I can make it work, will make the software somewhat safer, as it then can execute flawlessly, without requiring a passwordless sudo.

Dokumentere bruk av sudo, og hva maa gjoere hvis ikke sudo passord fri, og hva med services?