that darned ROOT problem
Mario Vukelic
mario.vukelic at dantian.org
Wed Sep 28 21:30:09 UTC 2005
On Wed, 2005-09-28 at 13:45 -0400, Bo Grimes wrote:
>
> Anyone who gets my user password has root, period.
As others have already said, anyone with physical access to your PC has
root _anyway_, by way of recovery mode in grub, or telling the kernel
init=/bin/sh
> so why bother doing it
> like this?
Because target users of Ubuntu are supposed to have problems grasping
the concept of the root account, and remembering 2 users and password. I
think that this opinion is true
> You either add the extra layer anyway or you operate under the illusion
> that your system is secure.
It is reasonably secure. There are no ports open to the outside. And the
root account buys you no security whatsoever. That is, if security
refers to protection from malicious intruders. If you mean that security
is about making your broken home setup of one user account fore several
people more convenient, you are wrong :)
> If it's to protect newbies from themselves
> it's not--as they can just type in their password and bork the
> system
Google finds 621,000 mails on this topic, I don't think I have anything
to add anymore :) And btw, I couldn't understand from the start of this
thread that you were surprised about this. Still, I'd be in favour of
adding a message to su.
Regards, M
More information about the ubuntu-users
mailing list