From owner-freebsd-isp  Tue Jan  8 16:57:58 2002
Delivered-To: freebsd-isp@freebsd.org
Received: from giroc.albury.net.au (giroc.albury.NET.AU [203.15.244.13])
	by hub.freebsd.org (Postfix) with ESMTP id B868937B41A
	for <freebsd-isp@FreeBSD.ORG>; Tue,  8 Jan 2002 16:57:51 -0800 (PST)
Received: from giroc.albury.net.au (giroc.albury.net.au [203.15.244.13])
	by giroc.albury.net.au (8.11.1/8.11.1) with ESMTP id g090vYG03264;
	Wed, 9 Jan 2002 11:57:34 +1100 (EST)
Date: Wed, 9 Jan 2002 11:57:34 +1100 (EST)
From: <freebsd-lists@albury.net.au>
X-X-Sender:  <rossw@giroc.albury.net.au>
To: Wim Livens <wim@livens.net>
Cc: <freebsd-isp@FreeBSD.ORG>
Subject: Re: root without password ?
In-Reply-To: <20020109004913.GB54233@krijt.livens.net>
Message-ID: <Pine.BSF.4.31.0201091154030.70965-100000@giroc.albury.net.au>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-isp@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-isp.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-isp>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-isp>
X-Loop: FreeBSD.org


On Wed, 9 Jan 2002, Wim Livens wrote:

> In order not having them to type the root password all the time when
> doing su, I thought of using a passwordless root account.
>
> Would that be a stupid thing to do (security-wise) if the following
> conditions are met:


I don't recall where I found it, but a snippet from my sudoers file:

PEOPLE          MACHINES = NOPASSWD: COMMANDS

I can't see mention of NOPASSWD in the man page, but it works for me.
YMMV.



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-isp" in the body of the message