> If user X can do things as root without supplying the root password (because
> there is none) but rather his own (which he can set to whatever), then the
> root account is no more secure than X's account.
The thing is, sudo is configurable to allow users to only do certain
things as root. For example, you can allow a user to only have root
privileges to run apt-get. This is much more secure than giving that
user the root password (on a system that has one).
-- Tcsh: Now with higher FPS! http://www.gnu.org/philosophy/shouldbefree.html ----------------------------------------------------------------------- This list is provided as an unmoderated internet service by Networked Knowledge Systems (NKS). Views and opinions expressed in messages posted are those of the author and do not necessarily reflect the official policy or position of NKS or any of its employees.
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 15:33:36 EDT