Re: To use GUI as root

To: debian-user@lists.debian.org
Cc: debian-user@lists.debian.org
Subject: Re: To use GUI as root
From: John Summerfield <debian@ComputerDatasafe.com.au>
Date: Fri, 20 Aug 2004 19:45:55 +0800
Message-id: <[🔎] 4125E473.2080302@ComputerDatasafe.com.au>
Reply-to: root@localhost.dyndns.org
In-reply-to: <[🔎] 41249CCD.7050709@acu.edu>
References: <[🔎] 20040819110438.95969.qmail@web53103.mail.yahoo.com> <[🔎] 41249CCD.7050709@acu.edu>

Kent West wrote:

2) sudo commands are logged
3) sudo can be restricted to give only the appropriate privs to theuser; userA can be allowed to add/delete users, but not software;userB can be allowed to add/delete software but not users; userC canbe allowed to do anything root can do; userD can be allowed toshutdown/reboot the box and do backups and edit /etc/fstab and nothingelse; userE can be alowed to use a graphical CD burning app that's notsuid; etc.

A user who can create users can do anything.
A user who can install software can do anything.
A user who can do restores can do anything.
A user who can do backups can make off with a copy of your secrets:-)


--

Cheers
John

-- spambait
1aaaaaaa@computerdatasafe.com.au  Z1aaaaaaa@computerdatasafe.com.au
Tourist pics http://portgeographe.environmentaldisasters.cds.merseine.nu/

Reply to:

Follow-Ups:
- Re: To use GUI as root
  - From: Loki <redvision@geocities.com>

References:
- Re: To use GUI as root
  - From: Glyn Tebbutt <plastic_d3c3it@yahoo.co.uk>
- Re: To use GUI as root
  - From: Kent West <westk@acu.edu>

Prev by Date: Re: Mouse works with X but breaks as a left-handed...
Next by Date: Re: Delayed mails on debian-user [Now mostly fixed]
Previous by thread: Re: To use GUI as root
Next by thread: Re: To use GUI as root
Index(es):
- Date
- Thread