On Saturday 04 November 2006 12:56, Geoffrey wrote:
John Andersen wrote:
My last foray into *ubuntu scared me away when I found you could:
sudo passwd root
As any user and set the root password. ... But, you misunderstand part of the process. Its only the first account
On Saturday 04 November 2006 07:37, Geoffrey wrote: that has the ability to sudo things unless that account (or root) adds the other people to the admin group.
Okay, so you're saying it's not as bad as Windows XP which sets up every user as a super user. Still, I see it as a huge security screwup.
No, its not. Its a recognized and valid approach. It can hardly be called huge. And its certainly not a security screwup. The installer is forced to create an account at setup and that account gets root permissions via sudo. How is that ANY different than the installer being forced to set the root password and root getting full permissions? Every time user#1 does something requiring root permissions they are forced to give a password. It prevents the new (12 year old) "SysOP" from running as root as most of them love to do. And it presents no hindrance to the competent admin. Its well thought out, not to my liking, but certainly acceptable. -- _____________________________________ John Andersen