Sudo is fine for single user workstations, but that's an excellent point about logging into the wrong machine.
Since most machines are single user, what's about a variant of passwordless sudo, where you type the name of the machine you're on instead of a password?
When is multi user actually used these days? I don't do a lot of cloud work, so I only ever see it in the form of different systems users, and some of that could be replaced with stronger per binary permissions like AppArmor.
I'd imagine on database servers or something with different levels of access, but I'm guessing most of those accounts wouldn't have sudo.
I dislike sudo as it becomes unwieldy for piped CLI commands. Because every 'verb' needs its own 'sudo', or else only some of the commands in the pipe get executed properly.
I prefer to use a special color-coded window for an actual root login. That 'root' xterm differs from my usual black-on-white xterm windows to being a white-on-black xterm.
Since most machines are single user, what's about a variant of passwordless sudo, where you type the name of the machine you're on instead of a password?
When is multi user actually used these days? I don't do a lot of cloud work, so I only ever see it in the form of different systems users, and some of that could be replaced with stronger per binary permissions like AppArmor.
I'd imagine on database servers or something with different levels of access, but I'm guessing most of those accounts wouldn't have sudo.