users logs

[mark]

Abdelkader Yousfi wrote:
> I want to get this tips for preventive reason for violating or doing
> something silly like changing config files...etc.
> AY.

Right. Ok, as I just said the other day, NO USERS EVER GET THE ROOT PASSWORD.
End of discussion.

*Nix is intended, from the git-go, as a multiuser system (unlike a certain o/s
from Redmond). User accounts are intended to be what users log into; they
should *not* log into root.

Some of the stricter companies have pushed no root login, even from the
console, that admins who need to work as root have to sudo or su to root.

Btw, this obviously is not the case for single user mode....

ONLY ones who have an actual need, that *your* manager approves, get sudo
privilege, and you can limit what commands they use, such as "user backup is
allowed to sudo rsync".

And *then* you've got records in /var/log/secure.

	mark