Am Mo den 10. Apr 2017 um 22:09 schrieb Alessandro Selli:
> You still should use sudo, with a password - the user's own password.
> Using root password many times, every day, is bad for security (the more
> times you type it the higher the chances are it will be captured)
That is a common misunderstanding.
If you have (like many people) have your account allowed to do
everything with sudo, than it doesn't matter if you have to type the
root password or your own. If a attacker can get hand on one of that
two, he can use it.
Moreover, it raises the attack vector from one password to two.
That stupid use of sudo (That was initialize introduced by ubuntu)
should have an end.
Another think is if (or not) you should allow login as root via password
at all.
Regards
Klaus
- --
Klaus Ethgen http://www.ethgen.ch/
pub 4096R/4E20AF1C 2011-05-16 Klaus Ethgen <Klaus@???>
Fingerprint: 85D4 CA42 952C 949B 1753 62B3 79D0 B06F 4E20 AF1C