I've got an upcoming series of articles on linux and viruses. Minimizing root usage is a _very_ good thing. I go so far as to disable root's account by changing the password to *.
:-) I hope that users don't do that. Changing the shadow field to "*" or "!" is what you mean. (The thing with * and ! used to be mentioned in some manpage; This is how the passwd program under Linux locks a password: It just prepends a "!". these characters may not even be in the target set of the crypt(3) algorythm.) *** With a SuSE, you might experience problems with this method of securing the root account: You are required to enter the root password if you boot into single user mode or when your file system check failed at boot time.
Kurt Seifried SecurityPortal, your focal point for security on the net http://www.securityportal.com/
Thanks, Roman. -- - - | Roman Drahtmüller <draht@suse.de> "Caution: Cape does not | SuSE GmbH - Security enable user to fly." | Nürnberg, Germany (Batman Costume warning label) | - -