[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

SV: sudoer vs superuser



>Anyone who sets up sudoers to allow that command should be shot.
>The idea behind sudo is to allow those users who are trusted to have a
>limited set of commands to run and to provide for tracking/auditing.
>Allowing anyone to use sudo with ALL commands is the same as giving them
>the root password (and only as secure as their user password).  VERY
>RISKY!
Hence why I said I wouldn't recommend it. For my own user (as in myself) I have it like that, but not without password. Without password I would only allow for very limited access. If my account would get hacked I wouldn't really like it to be to easy to gain root access. And 'sudo su -' is a wee bit overstated.. try 'sudo bash' or equivelent and you have a rootshell. If you have ALL = (ALL) that is.
 
Mattias

[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]