[SLL] sharing superuser account is always bad policy, right?
Jesse Keating
jkeating at j2solutions.net
Thu Feb 5 09:50:47 PST 2009
On Thu, 2009-02-05 at 09:44 -0800, Glenn Stone wrote:
>
> Ummm, yeah. The BOFH in me sees about six red flags there.
>
> Root's PW should never ever be stored cleartext, not if you've got anything
> resembling modern facilities. At a *minimum*, you can do the proverbial
> electronic sealed envelope, i.e. a gpg-encrypted file containing
> passwords...
That's not what he asked. He asked about the actual sharing of root or
otherwise elevated rights on a system, not how to communicate the access
tokens. Not that I disagree with anything you wrote, I was just trying
to divert attention back to the actual question on hand.
--
Jesse Keating RHCE (http://jkeating.livejournal.com)
Fedora Project (http://fedoraproject.org/wiki/JesseKeating)
GPG Public Key (geek.j2solutions.net/jkeating.j2solutions.pub)
identi.ca (http://identi.ca/jkeating)
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 197 bytes
Desc: This is a digitally signed message part
Url : http://lists2.linuxjournal.com/pipermail/linux-list/attachments/20090205/fbca2c17/attachment.sig
More information about the linux-list
mailing list