So, is there an agreement on "PermitRootLogin in SSHd"?  Who can make the
change?

--Brian

On Fri, 24 Aug 2001, Gavan Fantom wrote:

> On Mon, 20 Aug 2001, Chris Rupnik wrote:
>
> > All;
> > I have an open challenge for anyone at the office. Find me something that
> > sudo cannot do, and I will give you 5$.
> > So far, no one has collected any money from me.
>
> sudo cannot provide a trusted audit trail if it is used to give users a
> high level of root access. If somebody has permissions to edit the
> logfiles (and you can get a shell from practically any non-trivial
> program) then they're free to remove or alter all traces of their
> malicious activities.
>
> Not saying that sudo isn't useful, because it is. I'm just objecting to
> your statement that it can do anything.
>
> --
> Gillette - the best a man can forget
>
>
>

--Brian

 ----

"GNU/Linux: About as stable as the elements at the bottom of the periodic
table"