On 5/17/19 4:34 PM, Kevin Fenzi wrote:
So, this is basically the old cloud-init makes a user that can sudo to root thing. Can anyone explain in small words how this is more secure?
In a large system, it allows granular revocation of access (Joe Bow quit and we disabled his account) and accountability (who logged in as root and installed PHP 1.0?).
_______________________________________________ devel mailing list -- devel@lists.fedoraproject.org To unsubscribe send an email to devel-le...@lists.fedoraproject.org Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/devel@lists.fedoraproject.org
