Security Practices question

John M. Brown john at chagresventures.com
Sun Sep 22 22:22:11 UTC 2002


I have question for the security community on NANOG.

What is your learned opinion of having host accounts
(unix machines) with UID/GID of 0:0 

otherwords


jmbrown_r:password:0:0:John M. Brown:/export/home/jmbrown:/bin/mysh


The argument is that way you don't hav to give out the root password,
you can just nuke a users UID=0 equiv account when the leave and not
have to change the real root account.


Now, don't flame me over the question, but provide valid pro's or con's
for this practice from your experience.

thank you.

the reason I'm asking is important.

john brown






More information about the NANOG mailing list