[eternityforest]

Sudo is fine for single user workstations, but that's an excellent point about logging into the wrong machine.

Since most machines are single user, what's about a variant of passwordless sudo, where you type the name of the machine you're on instead of a password?

When is multi user actually used these days? I don't do a lot of cloud work, so I only ever see it in the form of different systems users, and some of that could be replaced with stronger per binary permissions like AppArmor.

I'd imagine on database servers or something with different levels of access, but I'm guessing most of those accounts wouldn't have sudo.