On Lu, 27 ian 20, 13:01:17, Patrick Bartek wrote: > On Mon, 27 Jan 2020 18:21:30 +0200 > Andrei POPESCU <andreimpope...@gmail.com> wrote: > > > > In the typical sudo setup the root account is locked, so both su and > > root logins are disabled. > > My point is that sudo is more of a security "hole" since it only > requires a user's password which in my experience are less secure since > most users create short, easy to remember ones.
That assumes the root password of these users would be significantly more secure. Even if it were, once the user account is compromised it would be easy to trick users into providing their root password to a fake 'su'. Kind regards, Andrei -- http://wiki.debian.org/FAQsFromDebianUser
signature.asc
Description: PGP signature
