[Leaplist] sudo vs su
Jim Hartley
xjimh at cfl.rr.com
Mon Jun 1 11:23:51 EDT 2009
Remote logging system???? I don't have a remote logging system. I have
just my one desktop machine here. In that context, does "sudo" have any
advantages? I am assuming that **I** am not going to do something stupid
like "rm -rf /"
Jim Hartley
Richard F. Ostrow Jr. wrote:
> Ok, now that we're actually talking in the right topic, here's the
> _correct_ answer.
>
> su - input not logged, difficult to backtrace what was done in the event
> of a catastrophic screwup (rm -rf /)
>
> sudo - can easily track what was done. Everything put into sudo goes into
> /var/log/{hostname}/messages of the remote logging system. An 'rm -rf /'
> would be logged on the remote machine, and I would know *exactly* who was
> stupid enough to do such a thing, and can make them clean up the mess.
>
> I wonder which one is better from an SA standpoint?
>
>
--
Teen Angel - a ghost story - http://teenangel.netfirms.com
--
This message has been scanned for viruses and
dangerous content by MailScanner, and is
believed to be clean.
More information about the Leaplist
mailing list