[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]

Re: Root user

From: Ramon Gandia <rfg nook net>
To: redhat-list redhat com
Subject: Re: Root user
Date: Thu, 31 Dec 1998 21:11:17 -0900

Steve Borho wrote:
> 
> adduser rewt
> vi /etc/passwd /etc/group # change rewt's uid & gid to 0
> 
> This is what most of the root kit exploits do.
> 
> > Example:  Hire a consultant.  You want to give him root priviledge but
> > keep track of his logins, for instance so you can "talk" to him, or
> > you can keep track of where he is, or for time billing, etc.
> 
> But I still think that it's better to give the consultant a normal user
> account (you don't stay logged in as root all day, do you?) and use sudo
> to allow them to run certain commands as root, without needing to know the
> system's real root password. sudo also logs each command line.
> 
> Wouldn't this work better than giving them a "second root" account?

Different folks, different strokes.

-- 
Ramon Gandia ==== Sysadmin ==== Nook Net ==== http://www.nook.net
285 West First Avenue                                rfg nook net
P.O. Box 970                                    tel. 907-443-7575
Nome, Alaska 99762-0970 ======================= fax. 907-443-2487

References:
- Re: Root user
  - From: Ramon Gandia
- Re: Root user
  - From: Steve Borho

[Date Prev][Date Next] [Thread Prev][Thread Next] [Thread Index] [Date Index] [Author Index]