I mean at least as much as anyone would need.
Here is the thing. On a Windows XP system you can desginate administrative users. When the system detetects that there are administrative users available it automatically disables the "Administrator" account (i.e. you can no longer logon as same). The reverse is true also. When you remove all of the administrative users you'll notice that the "Administrator" account is enabled. The advantage of this should be that it makes it harder to guess which accounts are administrative makeing it much more difficult to automate such activities.
Is it not true then that in the same manner one might fix it so that root can't logon while specifying admin users by using a group in the same style as wheel (i.e. limit access to the su command), only that in using a group name that is something other than "wheel" you make it more difficult?
James Sparenberg wrote:
Oh you can... BUT if the admin user is UID 0 then admin == root if the admin user != root and != UID 0 then the admin user doesn't have full root ability... unless you stand on your head with permissions.James On Sun, 2002-12-29 at 13:00, Jim C wrote:
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
