Re: su or sudo su?
- From: Tom H <tomh0665@xxxxxxxxx>
- Date: Tue, 19 Oct 2010 11:33:05 -0400
On Tue, Oct 19, 2010 at 9:49 AM, James Mckenzie
<jjmckenzie51@xxxxxxxxxxxxx> wrote:
Tomas Hajek <thajek@xxxxxxxxxxxxx> wrote:
I have to disagree with "sudo su - is stupid."
Given all of the information in this thread and rethinking my position, I have to agree.
You can block this if needed in the sudoers file.
Thus a user with sudo privileges could (in theory) be denied the ability to run su.
If a user can sudo to root, he/she can run su, at the very least
through the "-i" and "-s" options.
There are somethings in UNIXy systems that can only be done from console and as root.
I've never tried disabling root in Fedora, but you're logged in as
root in recovery mode in Ubuntu (and Debian if you disable root) - so
you can be root at the console through sudo or runlevel S without
having an explicit root login.
--
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
- References:
- Re: su or sudo su?
- From: James Mckenzie
- Re: su or sudo su?
- Prev by Date: config multi zone problem
- Next by Date: Re: How to change console font in grub2?
- Previous by thread: Re: su or sudo su?
- Next by thread: escape .c files to html code with bash how?
- Index(es):
Relevant Pages
|
