|
[Date Prev] [Date Next] [Thread Prev] [Thread Next] [Date Index] [Thread Index]
On Thu, 14 Oct 1999, Alexander John Batyi wrote:
>
> > Bottom line, never do this.
>
> My bottonm line is that I have been doing this for 15 years.
> I administer machines that are NOT on the internet and there
> was no sudo or at least programs like that were considered
Either way its important to have your admins be... careful and educated.
There really isnt a right or wrong answer to this. I just thought I'd
add that sudo lets you define command aliases. Lists of commands that
people (or groups) are allowed to run. This way you can give partial
root access. You need to be careful, if you give access to a command
that can be shelled out from, then you've essentially given full root
access to that person. Then again, if you cant trust your admins to
be responsible and follow the rules... you shouldnt be giving them
sudo at all.
There really isnt a cut and dried answer to this. Its one of those grey
areas you just have to make a judgement call on. I'm more of the same
mindset as Kyle, but thats just me.
_______________________________________________
Plug maillist - Plug@lists.nothinbut.net
http://lists.nothinbut.net/mail/listinfo/plug
|
|