Jack wrote: >I'm more disturbed that this kind of snipe hunt, the deleting of >well-known no-login system accounts >that date back in Unix history to the 1980's, is viewed by the Linux 390 >community as a useful or >rational activity that can be mandated by management without your >laughing in their faces.
Jack, this Linux 390 community consists of folks running Linux on very expensive hardware purchased by companies that view security as a very top priority. We're not talking about peecees in someone's living room. The concern is related to the risk. Many here have much more experience with systems that don't provide accounts called "games" and need to be able to justify, when asked, the necessity of an account like this. "Because it came with the system" I suspect isn't going to fly very far and it's not the answer I am comfortable having in my pocket. That said, the last auditors did not point them out. I wanted to make sure the implementations I am in charge of meet the policies as written and that I am able to answer questions with answers that I feel are valid. Marcy ---------------------------------------------------------------------- For LINUX-390 subscribe / signoff / archive access instructions, send email to lists...@vm.marist.edu with the message: INFO LINUX-390 or visit http://www.marist.edu/htbin/wlvindex?LINUX-390
