On Tue, May 21, 2002 at 07:44:10PM +0100, Colin Watson wrote: > On Tue, May 21, 2002 at 01:23:20PM -0500, Dave Sherohman wrote: > > On Mon, May 20, 2002 at 08:26:11PM +0100, Colin Watson wrote: > > > Like the document says, regularly su'ing to root from an account makes > > > compromising that account essentially equivalent to compromising root > > > anyway. > > > > How so? Regularly sudo'ing, sure, since that uses the user's password > > as a (hopefully limited) root password. On the contrary, since sudo'ing does not require the use of root's frequent use of sudo will never reveal the root password. No sane person will setup sudo to give unlimited root access, that would defeat the whole purpose with sudo. -- Note that I use Debian version 3.0 Linux emac140 2.4.17 #1 sön feb 10 20:21:22 CET 2002 i686 unknown Hans Ekbrand
Attachment:
pgp89nSem0YON.pgp
Description: PGP signature