Re: [Hampshire] Result of the Ubuntu Challenge

Top Page
This message is part of the following thread:
M-+\the complete thread tree sorted by date
M.MMTim B - Systems at <-
M\Andy Smith at ->

Reply to this message
Author: Sean Gibbins
Date:  
To: stephen.davies
CC: Hampshire LUG Discussion List
Subject: Re: [Hampshire] Result of the Ubuntu Challenge
Stephen Davies wrote:
> Sean,
> My take on su vs sudo is that with su and giving the root password to
> a user is a positive action. Just like in your work environment it can
> be positively controlled and even time limited rather than with sudo.
> Yes the user (sudo) has to be allowed to use sudo but IMHO, this is
> still a weakness only one password needs to be cracked/exosed and
> ironically a strength as it is easier to manage for non experts.

Hmm, so what's the difference between cracking my password and using
sudo, and cracking the root password and going direct? That's the bit
that puzzled me, since as you say you allow root to log in directly.

I do take your point about SELinux btw.

Sean


This message was posted to the following mailing lists:
Hampshire LUG
Mailing List Info | Nearby Messages		<-Re: [Hampshire] Result of the Ubuntu ChallengeRe: [Hampshire] Result of the Ubuntu Challenge->
Hampshire LUG Mailing List Archive administrated by WebmasterLurker (version 2.3)