Re: sudo questions
On Sun 18 Aug 2013 at 06:51:04 +0900, Joel Rees wrote:
> On Sun, Aug 18, 2013 at 4:03 AM, Brian <ad44@cityscape.co.uk> wrote:
> > On Sun 18 Aug 2013 at 03:12:39 +0900, Joel Rees wrote:
> >
> >> But debian's installer tries to encourage the user to not enable root,
> >
> > No, it doesn't.
>
> Perhaps you would rather I said something like, it gives the option to
> establish an initial account and tells the person performing the
> install
>
> if root login is enabled,
> the initial account will not be an admin account,
> but if root login is disabled,
> the initial account will be a member of the sudo group
> and thus an admin account,
> and, by the way, you might prefer to not enable root login.
>
> Is that closer to what the installer does in your opinion?
Yes, closer but the installer doesn't adopt a stance on sudo versus
root login. The wordings presented to the user are:
If you choose not to allow root to log in, then a user account will be
created and given the power to become root using the 'sudo' command.
and
You need to set a password for 'root', the system administrative
account. A malicious or unqualified user with root access can have
disastrous results, so you should take care to choose a root password
that is not easy to guess. It should not be a word found in dictionaries,
or a word that could be easily associated with you.
.
A good password will contain a mixture of letters, numbers and punctuation
and should be changed at regular intervals.
.
The root user should not have an empty password. If you leave this
empty, the root account will be disabled and the system's initial user
account will be given the power to become root using the "sudo"
command.
Reply to: