[Freeipa-devel] command-line arguments
Simo Sorce
ssorce at redhat.com
Fri Sep 7 15:57:12 UTC 2007
On Fri, 2007-09-07 at 11:42 -0400, Andrew C. Dingman wrote:
> On Fri, 2007-09-07 at 11:27 -0400, Simo Sorce wrote:
> > It makes it also impossible to take the system out or to log in when the
> > network is down for system maintenance. Until we have offline support I
> > would not do this.
>
> Single-user mode gets around this pretty easily, and it's pretty well a
> given that going into runlevel one doesn't disrupt the clients when the
> network is already down.
Not all systems let you login without the root password even in
single-user mode.
> > Also it make it impossible for users to join the machine and keep
> > themselves control on it. In some enterprises that is not wanted but in
> > many R&D departments that's a necessity.
>
> Sudo solves many problems, including this one. In fact, I run a number
> of my machines with no root password and all administration done through
> sudo. The FDA auditors loved that.
I love sudo as well, we are plannig to support it asap with the work on
policies.
Simo.
More information about the Freeipa-devel
mailing list