On Wed, Jan 21, 2009 at 4:19 AM, Rahul Sundaram
<sundaram fedoraproject org> wrote:
What are the specific use cases, where non technical users are being
compelled to login as root (and other alternatives won't work)?
The chief compelling one he mentions seems to be when NFS goes down
and Linux can't find the /home partition.
Or, to put it bluntly, when the Linux distribution isn't smart enough
to protect "non-technical users" (an admittedly subjective term) from
technical problems. Which is often.
But your critique, Mr. Sundaram, doesn't seem to imply that people
shouldn't login as root -- merely that you disagree with allowing them
to open a root session in X. To be rhetorical, we must ask, why?
After all, there's no such thing as "partial root power" -- you either
have full root privileges in a terminal in a normal user X session, or
full root privileges in a root X session.
Here's the why: you feel that a root X session is too insecure --
which it may indeed be. So we believe that the "ideal" method is to
not allow X root logins. But keep in mind, this is not actually an
ideal. It's a kludge to go around the fact that X is designed rather
horribly from a security standpoint. The "user session only" method
allows you to work around that.