I think people misunderstand the core problem: if root does not have a
password, then *any activity on the system* can gain root privileges
by su'ing to root. By restricting 'root login' to the olpc user via
sudo, it becomes simple to restrict the activities which can gain root
privileges, because our security system runs activities as their own
UIDs. This is the key difference in using sudo, not whether the root
account is 'well known', etc etc.
--scott
--
( http://cscott.net/ )
_______________________________________________
Devel mailing list
Devel@lists.laptop.org
http://lists.laptop.org/listinfo/devel
