Playing devil's advocate here, so hold your fire: Here's an aspect of
this question that I don't think this (bi-weekly occurring topic) has
ever really addressed.
If clear text transmission of a root password is the issue, then
you're at just as much risk from a sniffer on the wire regardless of
whether you log in directly or connect as a normal user and then su -.
If, on the other hand, the idea is to prevent a single stolen password
from resulting in a root compromise, then why is ssh root@somewhere
not discouraged for the same reason?
This inconsistency in best-practice troubles me. Could someone please
explain what I'm missing here?
-d
_______________________________________________
Redhat-list mailing list
[EMAIL PROTECTED]
https://listman.redhat.com/mailman/listinfo/redhat-list
