Date: Fri, 24 Oct 2008 21:25:29 +0300 From: Manolis Kiagias <sonic2000gr@gmail.com> To: Jos Chrispijn <kernel@webrz.net> Cc: FreeBSD Questions <freebsd-questions@freebsd.org> Subject: Re: root | su Message-ID: <49021319.7090804@gmail.com> In-Reply-To: <49020EAD.2070908@webrz.net> References: <49020EAD.2070908@webrz.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Jos Chrispijn wrote: > Is there a way of stopping root from su'ing to another user? > > Jos Chrispijn > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" > Root is supposed to be the almighty god on your machine (i.e. you...). No point trying to limit the abilities of root (especially if physical access is also provided). And seriously, root is a role not a person. If you find yourself trying to limit root's capabilities, you've probably surrendered the root password to the wrong person. If you need to give someone limited root access to a machine, just use security/sudo instead (with a carefully crafted sudoers file).
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?49021319.7090804>