On Thu, 08 Jan 2015 16:06:16 +0200, Marko Rauhamaa wrote: > Chris Angelico <ros...@gmail.com>: > >> With sudo, you get MUCH finer control. I can grant some user the power >> to run "sudo eject sr0", but no other commands. I can permit someone to >> execute any of a large number of commands, all individually logged. > > I can't remember ever having a need for that. I sometimes use sudo but > most times su is the way. > >> I can allow sudo to other users than root, without having to reveal >> those accounts' passwords (chances are they don't even have passwords). > > An administrator doesn't need the users' passwords for anything but > should be assumed to know them.
The administrator may be able to change them but he should NEVER know them (or need to)! > >> But sure. If you want to cut out complication, dispense with user >> accounts altogether and run everything as root. That's WAY simpler! > > In the era of personal computers, the main advantage of the root account > is that you can breathe more easily as an ordinary user, as the > potential for accidental damage is lower. > > > Marko -- Davis' Law of Traffic Density: The density of rush-hour traffic is directly proportional to 1.5 times the amount of extra time you allow to arrive on time. -- https://mail.python.org/mailman/listinfo/python-list