SSH hacked?

Brian McKee brian.mckee at gmail.com
Thu Jan 15 21:16:21 UTC 2009


On Thu, Jan 15, 2009 at 2:19 PM, Knapp <magick.crow at gmail.com> wrote:
> I just accepted the DEV GOD's when they said sudo was better than su but I
> never understood why that was so.

Here's some reasons that stand out to me.

- if more than one person has root access (more common in business
than home) each person in effect has their own root password - when
one person leaves the company you don't have to do anything more than
lock him out.

- you can be more specific with sudo - e.g. let this guy over here do
backups but not add printers, or that guy do backups but not play with
the webserver, etc. etc. etc.

- Everything done via sudo is logged in /var/log - so you KNOW what
they did, and who did it.
If of course each user has their own account - which you've blown out
of the water in your house.

If you want to keep that up, why not take that account out of the
admin group and create a new account just for admin stuff?  That way
none of you can accidentally blow up something...

- sudo 'expires' so that a half an hour later you aren't still root
when you throw out that folder you don't need anymore...

Brian




More information about the ubuntu-users mailing list