Michael Marsh <[EMAIL PROTECTED]> wrote: > know if it really solves the same problem. One problem it *does* > solve is being able to disable the root access of someone who is no > longer on the admin staff without having to change the root password.
This is better solved by using sudo and not giving out the root password at all. However both methods are not really ensuring that an admin who once had root access cannot use one of the backdoors or missconfigurations he has introduced to gain back that trust level. Unless you really are paranoid in monitoring your sysadmins, there is no real way to lock them out. Bernd -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
