[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [RFC] disabled root account / distinct group for users with administrative privileges

* Russ Allbery [2010-10-21 02:37 -0700]:
> I like sudoroot, personally, but I think sudo is probably okay.

A group named sudo or sudoroot is somehow linked to sudo as tool used to
gain administrative privileges.  No one knows if in future an other tool
will be the de facto standard to gain privileges, as sudo is now, and
having a group sudoroot whose members are allowed to gain to become root
using an imaginary suto command sounds wrong.

> Really, ideally, this is something that would be standardized across
> distributions.

I think, especially if we think about cross distribution standardisation
we should choose a name that is independent from implementation details
like command names.

The subject of this thread summarizes the purpose of this group quite

    ... / distinct group for users with administrative privileges
                                        ^^^^^          ^^^^^^^^^^

As admin already has been discussed and some people raised possible
disadvantages, what about using an abbreviation of the word privileges,
i.e., priv as group name?

> Yeah, that's the argument for using something relatively obscure, ...

priv should be obscure enough ;)


Reply to: