About root or administrative account

NoOp glgxg at mfire.com
Sat Mar 24 20:15:10 UTC 2007


On 03/23/2007 03:40 PM, David B Teague wrote:
> First, many thanks to all who answered this inquiry: Kristian, Tony, 
> Eamonn, Wee-Yee Chan,Jarrod, Ramkumar, Derek, and Matthew, with useful 
> commentary. I appreciate the several opinions. Hope I didn't miss anyone.
> 
> I do not yet understand why the Ubuntu way, sudo, with the USER's 
> PASSWORD, is not less safe than having a different root password. I 
> think the ordinary user who does an administrative task should have to 
> use the root password.  Someone pointed out that sudo gives logging, 
> which will give some tracking, useful after the fact, but is in fact, 
> not safer.
> 
> The logging that you get with sudu helps, and that with a single user, 
> there isn't a lot of difference in security between having a root log-in 
> and separate password and having a disabled root loging and using sudo 
> with the user password as Ubuntu does.
> 

This might be of interest to you:

http://www.sudo.ws/sudo/sudo.html
 http://www.sudo.ws/sudo/history.html
  http://www.sudo.ws/sudo/man/sudo.html

http://man.linuxquestions.org/index.php?query=sudo&section=0&type=2
https://help.ubuntu.com/community/RootSudo

Added note: some of the Mozilla developers reckon that sudo is "broken"
and recommend su instead. I've no opinion either way, but when I do my
installs for Mozilla projects (Seamonkey etc) I take their advise and
use su rather than sudo; since then I've experience no installation
problems.





More information about the ubuntu-users mailing list