Re: [RFC] disabled root account / distinct group for users with administrative privileges

To: debian-devel@lists.debian.org
Subject: Re: [RFC] disabled root account / distinct group for users with administrative privileges
From: "Giacomo A. Catenazzi" <cate@debian.org>
Date: Thu, 21 Oct 2010 17:59:55 +0200
Message-id: <[🔎] 4CC0637B.7070404@debian.org>
In-reply-to: <[🔎] 20101020112849.GA14599@reptile.pseudorandom.co.uk>
References: <[🔎] 4CBCCC71.5010507@debian.org> <[🔎] 1287468956.18904.8.camel@tomoyo> <[🔎] 201010190948.58805.jesus.navarro@undominio.net> <[🔎] 20101020015820.GE8365@yuggoth.org> <[🔎] 20101020112849.GA14599@reptile.pseudorandom.co.uk>

On 20.10.10 13:28, Simon McVittie wrote:

Quoting from base-passwd again:

     Allows users to add local modifications to the system (/usr/local, /home)
     without needing root privileges. Compare with group 'adm', which is more
     related to monitoring/security.

     Note that the ability to modify /usr/local is effectively equivalent to
     root access (since /usr/local is intentionally on search paths ahead of /
     usr), and so you should only add trusted users to this group. Be careful in
     environments using NFS since acquiring another non-root user's privileges
     is often easier in such environments.

... so in practice, staff is root-equivalent, but in principle it's not meant
to be. (Yay.)


It depends on the definition of "equivalent".

Anyway "staff" is a protection against user (aka admin)* errors*, notagainst *malicious* admins.

And this is still an important feature (IMHO), thus with differentobjectives as the original proposal.


ciao
	cate

Reply to:

Follow-Ups:
- Re: [RFC] disabled root account / distinct group for users with administrative privileges
  - From: Bob Proulx <bob@proulx.com>

References:
- [RFC] disabled root account / distinct group for users with administrative privileges
  - From: Michael Biebl <biebl@debian.org>
- Re: [RFC] disabled root account / distinct group for users with administrative privileges
  - From: Josselin Mouette <joss@debian.org>
- Re: [RFC] disabled root account / distinct group for users with administrative privileges
  - From: "Jesús M. Navarro" <jesus.navarro@undominio.net>
- Re: [RFC] disabled root account / distinct group for users with administrative privileges
  - From: The Fungi <fungi@yuggoth.org>
- Re: [RFC] disabled root account / distinct group for users with administrative privileges
  - From: Simon McVittie <smcv@debian.org>

Prev by Date: Re: [RFC] disabled root account / distinct group for users with administrative privileges
Next by Date: Re: Init dependency between nfs-kernel-server and name server
Previous by thread: Re: [RFC] disabled root account / distinct group for users with administrative privileges
Next by thread: Re: [RFC] disabled root account / distinct group for users with administrative privileges
Index(es):
- Date
- Thread