Language Selection

English French German Italian Portuguese Spanish

Simplify the Use of Sudo

Filed under
Software
HowTos

Being in the security business, I am constantly surprised by how many companies continue to rely on security practices that they know to be poor. Organizations, large and small, make excessive use of the root user account to perform routine maintenance on their UNIX and Linux computers. Even though companies often chose UNIX or Linux for better security, they employ practices that seriously undermine this advantage.

There are many reasons to not rely on the use of the root account:

* Because you can do anything, it's easy to make mistakes with dire consequences
* When something goes wrong, it's impossible to figure out who was responsible
* If someone leaves the company or the IT group, you have to change the root password and let everyone know the new one
* The opportunity for mischief is high
* You'll never pass a security audit

Companies use the root account because the alternative requires a lot of work. All too often, easy beats smart.

rest here




More in Tux Machines

Compact IoT gateway runs Yocto Linux on Quark

Advantech is prepping an Intel Quark based IoT gateway that runs Yocto Linux and offers PoE support. mini-PCIe expansion, and web-based device management. Read more

Review: Linux Mint 17.2 Release is Refreshed and Faster

Linux Mint 17.2 "Rafaela" MATE was launched last week and, as usual, I installed it on my machines to see how this distro is progressing. I found a refreshed, faster and more feature-rich distro that's well worth trying. Read more

Samsung to train India’s Telangana youth in Tizen Tech

As part of the spread of Tizen education in India, Samsung will train the youth of the Telangana Academy on innovative digital technologies based on the Tizen operating system. Read more

Jolla cuts hardware biz loose to concentrate on Sailfish licensing

Hardware and software outfit Jolla is to give up making hardware, with that part of the business set to be taken on by a new, yet-to-be-announced company, with Jolla then concentrating on its Sailfish OS. Read more