On Thu, 7 Feb 2019 20:13:40 +0000
Chris Green wrote:
> It's less for security surely than to provide auditing information
> which will show *who* was using root privilege.
That is one of the more important benefits in a production
environment, although to do it well takes a carefully written sudoers and
auditing everything that can be run as root for shell escapes.
> On a single user system it doesn't really add anything, there's only
> 'me' going to be root.
It does tend to encourage only using root privileges when they're
really needed rather than doing a bunch of routine things as root just
because one of them needed the privileges.
--
Steve O'Hara-Smith | Directable Mirror Arrays
C:\>WIN | A better way to focus the sun
The computer obeys and wins. | licences available see
You lose and Bill collects. | http://www.sohara.org/
--- SoupGate-Win32 v1.05
* Origin: Agency HUB, Dunedin - New Zealand | FidoUsenet Gateway (3:770/3)
|