[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: user created at install added in sudoers ?



On 6/20/07, Chris Brown <snecklifter gmail com> wrote:

[...] In my opinion (and many
others) this is A Good Thing(tm) and would be of benefit to the majority of
people. It would also result in a more secure Fedora which I think we can
all agree is a good thing. So lets get it debated (FESCo?) and hear some
arguments against because so far yours appears to be the only one and it
sucks.


In what way would it benefit a majority of users? I could be wrong,
but I suspect the majority of Fedora installations only have one
administrator, in which case, sudo actually ends up making things
_less_ secure (it provides another account by which root access can be
cracked). The majority of Fedora setups, including many ones with just
two or three administrators, would never have a need for revokable
root access (which is the only real advantage sudo gives).

I personally don't think it's an option that needs to be in the
installer, since in the majority of cases it is not even helpful. In
the other few cases, the person running the installation/firstboot
will setup (and hence know) the root password themselves, so there is
no need for a checkbox to add themselves to sudoers.

Sudo is only really useful in multi-administrator environments, where
root access needs to be revokable. For this case, it should be
presented as an option in system-config-users so second and subsequent
administrators can be set up, but it doesn't need to be in the
installer/firstboot.

n0dalus.


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]