On 20/06/19 4:56 PM, Bagas Sanjaya wrote: >> That is almost as bad as having no security restrictions at all. The >> correct thing to do would be to set permissions on the programs to >> allow them to be run by group remaja. > What I thought that the correct way is to configure sudoers so that > remaja group can access programs that they absolutely required via sudo > (e.g. mount for mounting USB sticks). > >> I don't say this often. I would immediately fire the person >> responsible for instituting this policy on a "production" system. (It >> would be a good policy if the system is intended as an educational >> environment to allow the teens to ruin things, and learn from >> experience.) > In fact, many television stations have most programs written for teens > (age 13 and older), so sysadmins there configure sudoers which allows > teens to behave like sysadmins themselves (by giving them full > administrator privileges) on their production systems. Also, parental > monitoring and guidance can reduce likehood of teens breaking such > systems. Maybe because teens are largest marketshare for TVs. >
I think we (or at least I) must be missing some context here. For starters, this must be some specific group of teenagers. And I'm sure they're not given permission to take over running the whole TV station. Is this some specific educational environment? Or is it a TV station specifically intended to be run by and for teenagers? Something else? Richard
signature.asc
Description: OpenPGP digital signature
