On Sat, 25 Apr 1998, Carl Mummert wrote: > Chris wrote: > > > > You might consider installing the `sudo' package and using that for > > > > all your root access. If you do that, then you can change the > > > > encrypted root password to * in /etc/shadow (you *are* using shadow > > > > passwords, I hope) and thus it becomes impossible to log in as root. > > > > > > Is this really a good thing? ... What happens when you need to add a > command to sudo, or when you need to come up in maintenance mode?
hmm... if you disable root access and use only the sudo package, aren't you making your system more unsecure? Why? Because you would probably want to make a sudo command to edit the sudo file.. and then a cracker only needs to sniff *one* password -- to your account -- instead of your password and the root password. Maybe cryptography using ssh + sudo for telnetting and root access only from the console is a better solution. -Paul -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
