On Thu, Sep 11, 2003 at 07:09:43AM -0400, Jason Dixon wrote: > This is what sudo is for. If he insists on having root, but can't > remember root's password, just give him the ability to escalate his > permissions. If he doesn't want to enter extra passwords, and you're ok > with it, add the following to your /etc/sudoers file (assuming you've > installed the sudo package): > > username ALL=(ALL) NOPASSWD: ALL
I used to like the idea of NOPASSWD on the sudo option but have since come to realize how unsecure this really is. If you're going to run with a password-less sudoers file, you may as well run as root. A nasty script could easily do something like "sudo /bin/rm /" and you'd be dead. -- Ed Wilts, Mounds View, MN, USA mailto:[EMAIL PROTECTED] Member #1, Red Hat Community Ambassador Program -- redhat-list mailing list unsubscribe mailto:[EMAIL PROTECTED] https://www.redhat.com/mailman/listinfo/redhat-list
