[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Google
  Web www.spinics.net

Re: Allowing remote root login seems to be bad. Why? (SUMMARY)

If he makes a "su -" he just change the user to "root" but you'll need the password anyway. Only user root can switch to "usual" user accounts without password permission. 

Kosala Atapattu schrieb:

On Tue, Jun 3, 2008 at 11:21 PM, David Edwards <DEdwards@xxxxxxxxxxx> wrote:

Ron,

I do agree that allowing root access in some cases does make sense.


Are we missing something. Tell me that I don't understand something
here. How can a user doing "su -" and jumping to root after login with
a regular user be different from login with direct root.

Where the first option provide extra barrier for a hacker and second
lets someone do the root dance easily.

Kosala


--
Mit freundlichen Gruessen / Kind Regards

Mario Spiegel

[Home]     [Fedora Users]     [Fedora Legacy]     [Fedora Desktop]     [Fedora Bible]     [Big List of Linux Books]     [Yosemite Photos]     [Yosemite News]     [Yosemite Campsites]     [KDE Users]     [Gnome Users]

Add to Google Powered by Linux