[Re: [Re: [SunHELP] Locking down root]]
David Baldwin
sunhelp at sunhelp.org
Fri Aug 10 16:23:31 CDT 2001
Maybe a little safer would be to use sudo. Can't remember the web site
but it is easy to find. It allows users to execute commands as root
without having to have roots passwd but they still have to be
authenticated and they are logged as well.
Worth looking into.
Dave
-----Original Message-----
From: David McMullen [mailto:celtirish at usa.net]=20
Sent: Friday, August 10, 2001 10:10 PM
To: sunhelp at sunhelp.org
Subject: Re: [Re: [Re: [SunHELP] Locking down root]]
My boss wants everyone who needs root access to get it through su. that
way I
can track the sulog. That's what bosses are for!
davidmac
Phil Brutsche <phil at giedi.obix.com> wrote:
A long time ago, in a galaxy far, far way, someone said...
> I have been asked to lock out console as well!
And who asked for that foolishness? Someone who doesn't have to
maintain
the computer?
If someone can just walk up to the computer itself and log into the
console I think you've got bigger problems... like someone
1) walking away with the system (you didn't mention how big this
computer
is)
2) walking up, rebooting via the power cable and booting off CD to get
to
the computer
or any number of other things.
Phil
_______________________________________________
SunHELP maillist - SunHELP at sunhelp.org
http://www.sunhelp.org/mailman/listinfo/sunhelp
_______________________________________________
SunHELP maillist - SunHELP at sunhelp.org
http://www.sunhelp.org/mailman/listinfo/sunhelp
More information about the SunHELP
mailing list