> > I was asked to look into the possibility of Disabling or Renaming > > the Root ID. > > > > Should I be doing this? Is there any concerns? What should look into? >
Actually the best way to limit root IMHO is LIDS (www.lids.org). It allows for a much more fine-grained permission control than the standard linux system. For example, while only root may read /etc/shadow, LIDS will allow you to restrict access to /etc/shadow even further (only certain programs, if run by root, can read it). This will prevent copying /etc/shadow or just reading it as root with 'cat'. (This is just one small example of what LIDS can do) lids: www.lids.org -- ------- [EMAIL PROTECTED] Join http://www.DShield.org Distributed Intrusion Detection System
