Another reason to prefer a real root over sudo

[Mark Kirkwood]

I wrote:
>
> Someone gets access to res's account, *installs* a keylogger and waits 
> until they have your root password. 
Sorry - very poor choice of wording, as a non-root user cannot 'install' 
anything in the usual sense ... however the res account config is 
completely amenable to manipulation (path, IFS, alias etc) so capturing 
the root password or doing something equivalent (arranging to alter the 
-c arg of su to create a nice setuserid 0 version of /bin/dash for 
instance) is relatively easy.

Cheers

Mark