22 Oct
2002
22 Oct
'02
3:40 p.m.
On Tue, 22 Oct 2002 shankar_ramchan@vsnl.net wrote:
but then philip, what wud be the best thing to do in a situation where the root password is shared between a team of administrators. The objective of my suggestion was to implement detective controls for the root account. Is there any other way to do this?
Please fix your line length.
I did not say don't su. They should still su. All I said is, don't prevent logging in as root.
If the admins log in as root, the problems are larger than just accountability.
Philip
--
Do not simplify the design of a program if a way can be found to make
it complex and wonderful.