[SLL] sharing superuser account is always bad policy, right?
Phil Mocek
pmocek-sll at mocek.org
Thu Feb 5 10:06:39 PST 2009
On Thu, Feb 05, 2009 at 09:35:15AM -0800, Jesse Keating wrote:
> On Thu, 2009-02-05 at 09:24 -0800, Phil Mocek wrote:
> > Is this practice typical among "Web hosting" companies who
> > provide dedicated Linux servers?
>
> If you want them to do maint work for you, they either have to
> have the root credentials or a user account with sudo rights.
It seems that if they need root, they shouldn't share it with me,
and that sharing that single account among themselves would be
bad. Sudo would allow them to maintain least privilege and allow
for logging of actions.
> They shouldn't have to reboot your box to root it in order to do
> simple tasks on your behalf.
Agreed.
--
Phil Mocek
More information about the linux-list
mailing list