[LUNI] Ever heard of SimplyMEPIS Linux?

[Martin Maney]

On Sat, Feb 10, 2007 at 10:17:56AM -0700, Mike Scott wrote:
> Plus having the root account disabled, should pretty much render
> rootkits moot.
> Or am I missing something here?

Probably.  Most unauthorized rooters exploit one hole or another, no?
If they aren't getting root by the normal login, they won't care
whether you can login as root that way, I think.  And snarfing your
password by whatever means will be just as effective whether it's the
root password per se or the password for an account that has
sudo-to-root permission.

As said, sudo is about breaking the "I just login as root all the time
- it's easier" habit (at least the sudo-to-root that Ubuntu sets up for
the administrative login - there can be lots of benefit to more limited
sudoer permissions for users who need certain specific privileged
access).  In that form it's really more about preventing unfortunate
accidents than security.

-- 
There has grown up in the minds of certain groups in this country
the notion that because a man or corporation has made a profit
out of the public for a number of years, the government and the courts
are charged with the duty of guaranteeing such profit in the future,
even in the face of changing circumstances and contrary public interest.
This strange doctrine is not supported by statute nor common law.  -- RAH