[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: sudo questions



On Sun 18 Aug 2013 at 06:51:04 +0900, Joel Rees wrote:

> On Sun, Aug 18, 2013 at 4:03 AM, Brian <ad44@cityscape.co.uk> wrote:
> > On Sun 18 Aug 2013 at 03:12:39 +0900, Joel Rees wrote:
> >
> >> But debian's installer tries to encourage the user to not enable root,
> >
> > No, it doesn't.
> 
> Perhaps you would rather I said something like, it gives the option to
> establish an initial account and tells the person performing the
> install
> 
>     if root login is enabled,
>     the initial account will not be an admin account,
>     but if root login is disabled,
>     the initial account will be a member of the sudo group
>     and thus an admin account,
>     and, by the way, you might prefer to not enable root login.
> 
> Is that closer to what the installer does in your opinion?

Yes, closer but the installer doesn't adopt a stance on sudo versus
root login. The wordings presented to the user are:

 If you choose not to allow root to log in, then a user account will be
 created and given the power to become root using the 'sudo' command.

and

 You need to set a password for 'root', the system administrative                                                        
 account. A malicious or unqualified user with root access can have                                                      
 disastrous results, so you should take care to choose a root password                                                   
 that is not easy to guess. It should not be a word found in dictionaries,                                               
 or a word that could be easily associated with you.                                                                     
 .                                                                                                                       
 A good password will contain a mixture of letters, numbers and punctuation                                              
 and should be changed at regular intervals.                                                                             
 .                                                                                                                       
 The root user should not have an empty password. If you leave this                                                      
 empty, the root account will be disabled and the system's initial user                                                  
 account will be given the power to become root using the "sudo"                                                         
 command.


Reply to: