[Full-disclosure] [Full-Disclosure] (Psexec on *NIX)
Valdis.Kletnieks at vt.edu
Valdis.Kletnieks at vt.edu
Fri Feb 2 06:38:20 GMT 2007
On Fri, 02 Feb 2007 13:25:11 +0800, Eduardo Tongson said:
> On 2/2/07, Xavier Beaudouin <kiwi at oav.net> wrote:
> <>
> >
> > Allowing direct root login even with SSH is IMHO stupid...
> >
>
> Please elaborate why is it IYHO stupid.
In environments where more than 1 person has root access, allowing direct
login to root means you can't keep an audit trail of which person logged in.
And if your environment only one person has root access, that's just looking
for a DoS if the one person is hit by a bus.....
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 226 bytes
Desc: not available
Url : http://lists.grok.org.uk/pipermail/full-disclosure/attachments/20070202/ff533a18/attachment.bin
Full-Disclosure is hosted and sponsored by Secunia.