[sudo-users] How does sudo improve security.
picog at softstart.co.za
Fri Apr 8 05:03:19 EDT 2005
Thank you all for your replies to my questions.
Another problem that I have is that I don't know what to allow normal
users to do. The way we are doing it currently is that all users have
the root password. I agree that this is not the best of mechanisms, but
we are a very small company and I am the self proclaimed system
administrator. Any recommendations on how I should limit users.
I was thinking of allowing them to install software through RPM but I
not sure what else to allow/disallow.
Also any comments on a hacker gaining access to your account and then
because your using sudo, the hackers job is made easy because he has
more rights than he normally would?
From: mlh at zipworld.com.au [mailto:mlh at zipworld.com.au]
Sent: 08 April 2005 01:10 AM
To: Pico Geyer
Cc: sudo-users at sudo.ws
Subject: Re: [sudo-users] How does sudo improve security.
On Thu, Apr 07, 2005 at 05:33:08PM +0200, Pico Geyer wrote:
> I'f users can use sudo to do things that they were normally not
> to do, does this not decrease security?
It only improves security in comparison to the alternative.
That alternative is often give everyone the root password.
More information about the sudo-users