On Fri, May 22, 2009 at 2:38 PM, Mark Shroyer < subscriber+deb...@markshroyer.com <subscriber%2bdeb...@markshroyer.com>>wrote:
> > It *would* be safer to use neither su nor sudo, and only have root log > in on a separate, secure console, thereby eliminating the possibility of > password sniffing from a compromised regular account. However, few > desktop Linux users actually run their computers this way. > Actually on most systems I use, root login from the console is dis-allowed, and the user must become root after logging into their own account. This provides an audit trail on who logged in as root. Stuart
