Posted Feb 16, 2007 0:25 UTC (Fri) by dd9jn
In reply to: remote root
Parent article: Linux botnets
"Allowing direct root access means that root access is not revokable
per-admin; if the password is somehow compromised"
FWIW, I was talking about public key authentication for root access. This also means that revoking access is as simple as deleting one line from authorized_keys.
Where do you see the problem? I agree that logging of access is not as it should be but it is still available and come one, having root access does on most systems mean you have all the power to manipulate the logs. So why care.
to post comments)