Raspberry Pi OS 6.2 Enforces Passwords for sudo, Ending Passwordless Admin Access

The latest Raspberry Pi OS release, version 6.2, which arrived on Tuesday, introduces a key security change: sudo commands no longer run passwordlessly. Previously, administrators could perform elevated actions without typing a password, a convenience feature that carried notable security risks.

With the update, any attempt to run a command with sudo now triggers a password prompt, requiring the current user’s credentials. In practice, you’ll see the prompt appear in the terminal as soon as you execute a sudo command.

Impact and considerations:

• Security upgrade: Requiring a password for sudo reduces the risk of unintended privileged actions if a user is logged in or a script is exploited.
• For interactive use: Expect to enter your password for administrator tasks, just as you would on most Linux distributions.
• For automation and scripts: If you relied on passwordless sudo for automation, you’ll need to adjust those scripts or revisit sudoers configuration with caution. Admins may opt to set specific no-password permissions for trusted commands, but such changes should be made carefully to avoid introducing new vulnerabilities.

What users should do:

• Try sudo commands and enter your password when prompted.
• Review any automated processes that previously depended on passwordless sudo and update them accordingly, prioritizing secure, auditable methods of elevation.
• If you manage multiple devices, plan a rollout to communicate the change to affected users and ensure scripts and cron jobs continue to run as intended.

This move aligns Raspberry Pi OS with common security practices, emphasizing credential-based privilege elevation over convenience.