On Thu, 2 Oct 2003, Matt Miller wrote:
> Really, I am into security and all, but what are the risks of allowing root
> ssh login to your localhost? - especially on a desktop machine.
Not so applicable to a desktop machine, but allowing direct root logins
from any source eliminates a good source of accountability for sysadmins.
Sudo and su both log an event when users assume root privileges; if all
you know is that root logged in from "dhcp-666.example.com" at 4:30pm, you
don't immediately have any clue who that really was.
-----------------------------------------------------------------------
This list is provided as an unmoderated internet service by Networked
Knowledge Systems (NKS). Views and opinions expressed in messages
posted are those of the author and do not necessarily reflect the
official policy or position of NKS or any of its employees.
This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 19:48:46 EDT