Switching Users in Linux (su, sudo) - 惯性聚合

推荐订阅源

Full Disclosure

博客园 - 聂微东

The Cloudflare Blog

Last Week in AI

Tailwind CSS Blog

Proofpoint News Feed

aimingoo的专栏

Google Developers Blog

The Blog of Author Tim Ferriss

博客园 - 叶小钗

Threat Intelligence Blog | Flashpoint

IntelliJ IDEA : IntelliJ IDEA – the Leading IDE for Professional Development in Java and Kotlin | The JetBrains Blog

The Exploit Database - CXSecurity.com

Help Net Security

WordPress大学

Future of Privacy Forum

让小产品的独立变现更简单 - ezindie.com

The Register - Security

About on SuperTechFans

CTFtime.org: upcoming CTF events

博客园_首页

CERT Recently Published Vulnerability Notes

Know Your Adversary

Threat Research - Cisco Blogs

Vulnerabilities – Threatpost

CXSECURITY Database RSS Feed - CXSecurity.com

Blog — PlanetScale

Recorded Future

大猫的无限游戏

Kaspersky official blog

Hugging Face - Blog

Secure Thoughts

DEV Community

Terraform + Terragrunt + Ansible: A Hands-On Learning Journey AI 智能体的鲁莽速度 Quick Win Card #01 — Ton backlog.md t'a menti (la cure en 30 secondes) Quick Win Card #01 — Your backlog.md lied to you (a 30-second cure) How to Manage an IT Team: Structure, Scaling, and Daily Workflows That Work Speccing Is the New Coding CAC 250만 원을 뚫기 위해 퍼널 세 곳을 뜯어고친 3개월 Creating My First Token on Solana Devnet as a Web2 Developer Five Salesforce Reports Every Nonprofit Leadership Team Should Have Beyond the West: What Eastern AI Models Mean for Enterprises, Developers, and Digital Sovereignty Class and Pseudo Class Git & GitLab Basics 고객은 우리를 사기꾼으로 봤다: 아무도 믿지 않는 신사업을 단 둘이서 검증한 3개월 Cron Not Working on Mac? How to Fix the macOS Sleep Trap with launchd Cache Everything: Advanced Caching Strategies in Vue 3 & Nuxt 4 Deploy a Node.js App to STACKIT Kubernetes Engine With Managed Redis & PostgreSQL Slopsquatting & Remote Prompts: Why I Built a 38,000 Ticker Engine with Zero NPM Dependencies 05/20: TCP/IP vs OSI Model: The Ultimate Comparison My New Adventures in IT # Mitigating Market Inefficiency in eSports: A Stochastic Approach to EA Sports FC25 Modeling Don't let a billion RAG docs drown your 25-result pipeline Experienced devs are slower with AI tools. Nobody wants to admit it. I built an MCP-native OSINT framework that lets AI agents investigate from your terminal AWS Nitro Enclaves vs Intel TDX: Why Attestation Root Matters for Regulated Workloads Vibe Coding: Revolution or Risk in Software Development? - SmarterArticles S1E6 JSON Schema Explained: Validate Your API Data Before It Breaks Production Harness Tells Your Agent What to Do. GUI Agents Let It Actually Do It. Is AI actually replacing developers? Customizing Docker Images: Write Your First Dockerfile (2026) €40 n8n vs 28% weekly Anthropic quota. Which /goal layer should you actually run? Reviving glyph-v8: From a Forgotten Prototype to STRIDE - a Field-Aware Integer Coder 04/20: Data Encapsulation: How a Message Becomes Bits on the Wire Hướng Dẫn Thiết Lập Reasoning Proxy DeepSeek V4-Pro với Cursor (2026) Sofi Log #012: Agentic GDP — Solana Pay.sh & x402 Protocol Spec Input Types, Attributes, Self-Closing Tags, Hover Effect Absolute vs Relative Paths File Types (Regular, Directory, Link, Device, Socket, Pipe) From Arduino IDE to AVR GCC | AVR Bare Metal #1 Using Bitcoin as collateral without wrapping it: the design of a BTC collateral vault Unreal Engine 5 Skill System Architecture using GAS and GameplayTags 5 Things I Wish I Knew Before Building with Hermes Agent Thoughts on Codingame 2026 Spring challenge OUT WITH THE OLD IN WITH THE NEW Why are simple 1099 tax calculators online so horribly bloated? So I built my own "Why You're Not Getting Callbacks (It's Not Your Skills)" # How I Built a Retail Demand Forecasting App with Python and Streamlit Why We Deliberately Crush Lithium Batteries (UN38.3 Crush Testing Explained) Command History & Completion The Three-Body Problem: AI Code, Supply Chain Attacks, and the Talent Exodus 로컬 LLM 셋업 가이드 (v27) Building Better .NET Worker Services with Cursor Rules Generate Professional PDF Invoices via REST API — JSON In, PDF Out Redis: Big Keys Destroem o Desempenho Compartilhado Agentic AI for Cybersecurity: Autonomous Threat Detection and Response How to Automate Android Without Appium Cron vs systemd daemon: which one for Node.js? Designing XSLT transforms with parameters and multiple inputs I Downloaded Gemma4:e2b On My Macbook in 2 steps Building an Autonomous SRE Agent: From Raw Telemetry to Safe, AI-Driven Remediation The EU AI Act in 2026: Reading the Law After the Omnibus I had zero coding knowledge. Here is "RetroTube", a 2010 YouTube sandbox prototype I built using AI! How to Validate Environment Variables in TypeScript (and Why You Should) I Built a CLI Tool That Writes Better Git Commits Than I Do Transfer Fees, Metadata, and Soulbound Tokens: My First Real Token Experiments on Solana Stop Using Fetch() in React: A Better Way To Call Your Backend Creando un Tetris con JavaScript VI: Complicando el juego. DeepSeek's API Price Cut Changed My Claude Code and ChatGPT Math [Boost] Perl 🐪 Weekly #774 - Perl is too HOT How to Track AI Usage Without Losing Revenue (Complete Guide) 77 Rules Later: What Graduating Our First Stack Actually Looked Like RAG 시스템 실전 구축 (v26) When Premature Scaling Leads to Operator Burnout Multi-Repo Microservice Changes Are a Coordination Problem. I Solved It With AI Agent Teams. The Next Frontier: How Multi-Agent Systems are Redefining Productivity The Kimwolf Bust Just Outed Android Webcams as Botnet Fodder — Here's the Question Every Repurposed-Phone Camera Setup Has to Answer I'm an autonomous AI agent. I shipped 18 fixes to myself in one session. Building a Secure Future with Zero Trust Security Architecture Asynchronous Functions in Dart How I migrated magic-link login from Resend to AWS SES + Lambda five days before launch Edge Computing He creado una empresa ficticia IT/OT para poder encontrar sus vulnerabilidades y reforzar su seguridad en sus activos críticos Why I Built @editora/react I built a tiny UGC script generator because hooks are the hardest part The Phone Is Becoming the New Terminal Why Most AI Music Tools Feel Wrong to Developers Goroutines vs. Promises: Why Go and JavaScript Look at Concurrency Completely Differently How I Use Antigravity 2.0 to Navigate Open-Source Codebases and Make Better Technical Decisions Understanding Basic HTML & CSS Concepts for Beginners Go Error Handling: Annoying or Awesome? Your To-Do List Doesn't Know You — So I Gave Mine Three Brains Shell Basics (Bash, Zsh, Sh) Free MongoDB GUI Tool for Developers, Students, and Teams Designing High-Performance Blockchain Indexers Choosing Models for an Agentic Chat App on Amazon Bedrock How Smart Growth Teams Automate Their Marketing Stack in 2026 (Without Hiring More People) What I Learned About Memory-Augmented AI Agents Seven Docker Tips Every Engineer Should Know (from Docker Captains) Welcome to the Fast-Food Era of Testing: Over-Weight by Tests How to use Claude in vscode?

Switching Users in Linux (su, sudo)

Aryan Vaishn · 2026-05-25 · via DEV Community

Linux allows users to:

Switch to another user
Run commands as another user
Get administrative access securely

Main commands:

su
sudo

1. su Command

Meaning

su = substitute user

Used to switch from one user to another.

Basic Syntax

su username

Example

su devuser

System asks:

Password:

Requires target user's password.

Switch to Root User

su -

or

su root

Difference Between su and su -

Command	Behavior
su	Switch user only
su -	Full login shell

Example

su - devuser

Loads:

User environment
PATH variables
Home directory

Exit Switched User

exit

Real-World Usage

Switch to Application User

su - nginx

2. sudo Command

Meaning

sudo = Super User DO

Runs a command with elevated privileges.

Basic Syntax

sudo command

Example

sudo apt update

Important Difference

su	sudo
Switches entire user	Runs single command
Needs target password	Needs current user password
Full shell access	Controlled access

Why sudo is Preferred

Better security
Logging and auditing
Limited root access
Safer administration

Run Root Shell with sudo

sudo -i

or

sudo su

Run Command as Another User

sudo -u nginx whoami

Example Output

nginx

Sudo Permissions

Controlled by:

/etc/sudoers

Safe Editing

Use:

sudo visudo

Add User to sudo Group

Ubuntu/Debian:

sudo usermod -aG sudo devuser

RHEL/CentOS:

sudo usermod -aG wheel devuser

Real-World DevOps Usage

Restart Service

sudo systemctl restart nginx

Install Packages

sudo apt install docker.io

Kubernetes Admin Commands

sudo kubectl get nodes

Common sudo Options

Command	Purpose
sudo -i	Root shell
sudo -u user	Run as another user
sudo -k	Forget cached password
sudo -l	Show allowed commands

Principle of Least Privilege

Give users:

Only required permissions
Not full root access

Real-World Example

DevOps User Setup

sudo useradd -m devops

sudo usermod -aG sudo,docker devops

Now user can:

sudo docker ps

Common Mistakes

Using Root Directly

Bad practice:

su -

for daily tasks.

Better:

sudo command

Security Risks

Improper sudo access can allow:

Privilege escalation
Full server compromise
Accidental system damage

Best Practices

Prefer sudo over direct root login
Avoid sharing root password
Audit sudo access regularly
Use visudo for editing sudoers
Grant minimum required permissions

此内容由惯性聚合(RSS阅读器)自动聚合整理，仅供阅读参考。原文来自 — 版权归原作者所有。