Stewart Stremler wrote:
begin quoting Todd Walton as of Tue, Apr 19, 2005 at 08:52:44PM -0700:
On 4/19/05, Stewart Stremler <[EMAIL PROTECTED]> wrote:
You're running services, therefore you're running a server. I don't
put your box into the single-user system category.
Well, then. Problem solved.
Every user can potentially run services of some sort, and many of them
will. So, since their not a "single-user system", as you're defining
it, then they don't qualify for the user-root-same-thing thing. Therefore, they should not be normally running as root.
That's why the first "reason" I gave was promotes 'bad habits'.
But if you're invoking "potential", the user can potentially remember
not to log in as root when they're running a service.
I connect via dialup and run squid to /hopefully/ have a faster pipe, so to speak. If, while I am online, I feel the need to open a shell and "su -", does this make me particularly vulnerable? Squid is not the only thing. I have many others running as well, such as anacron, atd, crond, and cups, just to name the first four (total of 18 in 130).
-- [email protected] http://www.kernel-panic.org/cgi-bin/mailman/listinfo/kplug-list
