On Fri, 02 Feb 2007 13:25:11 +0800, Eduardo Tongson said: > On 2/2/07, Xavier Beaudouin <[EMAIL PROTECTED]> wrote: > <> > > > > Allowing direct root login even with SSH is IMHO stupid... > > > > Please elaborate why is it IYHO stupid.
In environments where more than 1 person has root access, allowing direct login to root means you can't keep an audit trail of which person logged in. And if your environment only one person has root access, that's just looking for a DoS if the one person is hit by a bus.....
pgpNKCLZMTPU9.pgp
Description: PGP signature
_______________________________________________ Full-Disclosure - We believe in it. Charter: http://lists.grok.org.uk/full-disclosure-charter.html Hosted and sponsored by Secunia - http://secunia.com/
