Mailinglist Archive: opensuse (3437 mails)

["Carlos E. R." <robin.listas@xxxxxxxxxxxxxx>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1



The Monday 2008-06-09 at 12:18 -0700, Sloan wrote:

> >  So you are saying a user added to the group "root" would not impose a
> >  danger of this user unwittingly running rm -Rf / and nuking the
> >  system?
>
> Nope, it significantly reduces the danger. Simply being a member of the root 
> group would not allow one to remove / since that would require write access, 
> which isn't somehow automatically conferred just because a user in the root 
> group.
>
> Secondly, since this user is already the admin & owner of the machine, he 
> already has the root password. So, rather than allowing him read access to 
> the log files through a group addition, you'd rather have the user log in as 
> root, where he really *could* rm -rf /
>
> So, how is that safer?

Exactly :-)


Perhaps a danger could be that if somebody on the networks gains access as 
that user, impersonating him or through some hole, then he would have 
access to logs and things.

However, if the root has the same password as the 1st user by default on 
new novell/suse systems, and this will be known by hackers, the group 
wouldn't matter much :-p

- -- 
Cheers,
       Carlos E. R.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.4-svn0 (GNU/Linux)

iD8DBQFITa3mtTMYHG2NR9URAg8BAKCG2vSMeGAy4apOjEt57HwUb8LGpACdF32C
WAOpWjYCgmG0P4lvfrvwzUI=
=zj/4
-----END PGP SIGNATURE-----
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx