This is ridiculous. Did you even read the original poster's use case? He's probably trying to copy a file securely from one system to the other system. The file is probably owned by root on both systems. SCP is a completely reasonable way to do that.
How would you suggest he perform that operation otherwise? Copy to an intermediate account, and have the file owned by a less secure account in the process? That's less secure, not more, than just allowing a root-to-root scp. Create a "root like" account just for this purpose? If you do that, then what's the point? if you're going to have that psuedo-root account, then you've just created the slightly-less secure situation you're obviously under the impression that you can avoid entirely. Or copy the files to a thumb drive or CD and transfer them manually? That's probably much less secure. This is exactly the kind of thing that drives me crazy about IT people. They completely forget that the entire purpose of computing systems is to get work done more efficiently ... not to provide a challenge for them to create an fortress that's impenetrable. You're right .. you don't want to have situations where there are "nobody" accounts. That's why you only give root access to a very few people. And those people have to be trustworthy ... there's no getting around that. "Features" like this just make Solaris a less useful computing platform. It's little surprise that it's dying out. -- This message posted from opensolaris.org _______________________________________________ sysadmin-discuss mailing list [email protected] http://mail.opensolaris.org/mailman/listinfo/sysadmin-discuss
