Mailinglist Archive: opensuse-security (396 mails)

< Previous Next >
Re: [suse-security] Secure root alias logins
  • From: Michael Heide <michael.heide@xxxxxxxxxxxxxxxxxxxxx>
  • Date: Fri, 17 Jan 2003 00:15:21 +0100
  • Message-id: <200301170015.21649.michael.heide@xxxxxxxxxxxxxxxxxxxxx>
> why not disable su and root/ssh completely and use sudo instead?
> sudo has a simple configuration file and lets system users issue
> commands as root. the commands are limited to those permitted in the
> configuration file.

for paranoids like you it is best to disable root complete except in boot-scripts.
disable su, root/ssh, sudo etc completely.
but even this system won't be 100% secure!
and if you want to (for example) install some new software you have to reboot (boot from cd or floppy)


Der süsse Pinguin ist mir lieber als die kleinen weichen, die einem nur kaputte Fenster verkaufen

< Previous Next >
Follow Ups