Security of using sudo rather than su?

Adam Funk a24061 at
Thu Sep 14 09:18:35 UTC 2006

I've read the official explanation of the locked root account [1] and
it still seems to me that this system can reduce security (in
comparison with the traditional approach) because an attacker
(especially a remote attacker) can gain root privileges by cracking
one password (the main user's) rather than two (since normally root
isn't allowed to log in over ssh).

Why is this view wrong?


More information about the ubuntu-users mailing list