Ask HN: How long is your root user password
It goes without saying perhaps, but I'm not talking about servers or anything, just the root user of your everyday machine. How much do you type when you sudo? I have gone both long and short. Give reasons.
8 comments
[ 2.3 ms ] story [ 34.8 ms ] threadI see this as both good and bad - users should know their own private credential (rather than the shared "secret" root passwd), but as it's a password they use regularly (potentially multiple times a day), it's easy for people to use something less secure than they otherwise would for "root".
This is very true, but I'd also like to add that getting root privileges might not even be that important.
You only need privileges for the user owning the data.
You might not get to root, but you can still do a fair amount of stuff with non-root.
I always remove sudo from my laptops, su works fine inside tmux. Since the laptop screen is locked when I'm away, the tmux session (with root) can stay active for weeks, so not much typing the root pw.
My everyday remote machines all have an ssh-key for root (and a very complex password that I have printed on a paper at home).
I use pwgen -sync "${1:-42}" -1
I have a special 'goroot' script which launches an xterm in a white-on-black color-scheme and requires the root password, as distinct from my normal-user xterm script which launches xterm in a black-on-white color-scheme.
Oh, how long?? 9 characters.