I think people misunderstand the core problem: if root does not have a password, then *any activity on the system* can gain root privileges by su'ing to root. By restricting 'root login' to the olpc user via sudo, it becomes simple to restrict the activities which can gain root privileges, because our security system runs activities as their own UIDs. This is the key difference in using sudo, not whether the root account is 'well known', etc etc. --scott
-- ( http://cscott.net/ ) _______________________________________________ Devel mailing list Devel@lists.laptop.org http://lists.laptop.org/listinfo/devel