Leon Brooks wrote: > On Friday 31 January 2003 07:47 am, Damian Gatabria wrote: >
>>Umm.. there should be an easy way to disable all of this stuff, right? > > > Yeah, just leave root consoles lying around unprotected on your box. Sooner or > later that will result in a lot of stuff being disabled. # msec 4 and you won't have this, at least not for very long. Of course you can have it in a different msec level if you set some custom options with draksec. > > I think you missed an important criterion: that the password not be required > when switching from an unlocked session belonging to the same user (or > presumably anyone with UID 0, on the premise that they could su or the like > anyway). I don't think there is any feasible way to accomplish this, so I think it is best left alone for now. If you have root, and you don't know to check all your VTs or set the timeout to kick you out, and you do this in an enterprise, someone needs to reconsider whether you should have root or not .... -- |--------------Another happy Mandrake Club member--------------| Buchan Milne Mechanical Engineer, Network Manager Cellphone * Work +27 82 472 2231 * +27 21 8828820x121 Stellenbosch Automotive Engineering http://www.cae.co.za GPG Key http://ranger.dnsalias.com/bgmilne.asc 1024D/60D204A7 2919 E232 5610 A038 87B1 72D6 AC92 BA50 60D2 04A7
