Using sudo to Keep Admins Honest? sudon't!
Corey Burger
corey.burger at gmail.com
Sat Nov 4 05:15:22 GMT 2006
On 11/3/06, Scott <geekboy at angrykeyboarder.com> wrote:
> So says Charlie Schluting of Enterprise Networking Planet
>
> "Now that Ubuntu Linux doesn't enable a root account by default, but
> instead allows full root access to the user via sudo, the world will
> never be the same."
>
> "The Ubuntu usage of sudo simply provides a hoop to jump through,
> requiring users to type their password more often than they'd like. Of
> course this will prevent a user's web browser from running something as
> root, but it isn't security."
>
> http://www.enterprisenetworkingplanet.com/netsecur/article.php/3641911
>
>
> I don't agree or disagree. I just thought I'd share.
His arguments are spurious and easily refutted. There is a great deal
of resistence from old school Linux/Unix people about sudo. No, it
doesn't make you safter working in root, but it does allow a two great
things:
1. one less password to remember
2. easy revoking of root privs without changing passwords
Cheers,
Corey
More information about the sounder
mailing list