Restricting root

Dana Kaempen decay at flash.net
Tue Mar 26 14:19:41 EST 2002


Ben wrote:
> However our security department has concerns about allowing the root account to use sudo.
root can already do anything that root wants to, unless you have root going into a restricted shell, which would be pretty goofy.  sudo merely gives *other users* the capability to run commands _as_ root.

> Is this a valid security concern?
Not that I can see...  Sounds like a security department that's not seeing the whole picture.

Dana
-- 
..d..ecay

mailto:decay at flash.net
------------------------
"Keep the wheels rolling." - Anonymous traffic prophet



More information about the sudo-users mailing list