-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hiya William,
        Sudo can be used to restrict access, so that only certain programs can
be run using it.  It asks for your password rather than the user you're
trying to login to (unlike su).  It also helps maintain a more accurate
audit trail (although I don't have details on exactly how it does that).
 Also su I believe only allows access to people in the wheel group.
        Therefore, you'll see people using them in conjunction (particularly
with systems like ubuntu that don't give you a root user), so that a
user can enter their own password and be restricted to a particular
program in this case su, and keep better audit logs all thanks to sudo.
 Whilst at the same time it still gives you complete access to the
system/login shell through su (a simpler and therefore presumably easier
to secure program).  So they can achieve the same results, but it is the
differences in the programs and the way they work that makes people
choose one over the other (or try and combine their best qualities).
        That's the best of my understanding, hope it helps?
        Mike  5:)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.14 (GNU/Linux)

iEYEARECAAYFAkuKyisACgkQu7rWomwgFXp6KQCfRGn4b10R8onUVIXlaMgGJ/1o
gpQAn1wiKNrFzlHZLKozCgaJujSUkKH4
=55Bj
-----END PGP SIGNATURE-----

Reply via email to