Richard Fearn <richardfearn@xxxxxxxxx> writes: >> Who says the first created user is root-equivalent? > > It wouldn't be root-equivalent. You have to explicitly use sudo, and > enter your password when you do use it. It's not the same as a root > prompt. It is from a security person POV. If an attacker compromises your non-root account, and if you use sudo or whatever to "switch" to root then root as compromised as well, password or no password. You have to use a secure terminal and a secure "path" to the root session to be really secure. -- Krzysztof Halasa -- fedora-devel-list mailing list fedora-devel-list@xxxxxxxxxx https://www.redhat.com/mailman/listinfo/fedora-devel-list
