Re: [root user] How to disable root account?

To: debian-user@lists.debian.org
Subject: Re: [root user] How to disable root account?
From: Christian Folini <christian.folini@time-machine.ch>
Date: Thu, 1 Dec 2005 17:18:45 +0100
Message-id: <[🔎] 20051201161845.GA6036@coloppl>

On Thu, 1 Dec 2005 09:24:28 -0600 Dave Sherohman wrote:
> sudo is great for tracking who does what as root and for preventing
> yourself from accidentally doing something with greater powers than
> intended, but it can very easily be counterproductive if your intent
> is to increase resistance to unauthorized access.

The sudo/wheel approach is also a handy one when you want to update 
the root password regularly, but you do not want to  tell it to 
everyone. Say you work in an heterogenous enterprise with lots of 
admins having their unix workstation. They need root permissions on 
their desktop machine, but you do not want to distribute the root
password (lacking the encrypted channel to reach everyone for example).

Then you can add them to the wheel group and give them a root
shell that way. Meanwhile you can update the root password 
without any problem.

Ubuntu follows this road a bit further by setting a random root 
password nobody actually knows. This seems consequent to me. But 
having to explain to my boss why i do not know the root password of 
our linux workstations did not seem that attractive.

regs,

Christian Folini

-- 
Christian Folini - mailto:christian.folini@netnea.com

Reply to:

Follow-Ups:
- Re: [root user] How to disable root account?
  - From: Wim De Smet <kromagg@gmail.com>
- Re: [root user] How to disable root account?
  - From: marc <gmane@auxbuss.com>
- Re: [root user] How to disable root account?
  - From: Dick Davies <rasputnik@gmail.com>

Prev by Date: PC Slowdowns and Lock-ups
Next by Date: Re: remote desktop and VPN
Previous by thread: Re: [root user] How to disable root account?
Next by thread: Re: [root user] How to disable root account?
Index(es):
- Date
- Thread