1 |
-----BEGIN PGP SIGNED MESSAGE----- |
2 |
Hash: SHA1 |
3 |
|
4 |
Hiya William, |
5 |
Sudo can be used to restrict access, so that only certain programs can |
6 |
be run using it. It asks for your password rather than the user you're |
7 |
trying to login to (unlike su). It also helps maintain a more accurate |
8 |
audit trail (although I don't have details on exactly how it does that). |
9 |
Also su I believe only allows access to people in the wheel group. |
10 |
Therefore, you'll see people using them in conjunction (particularly |
11 |
with systems like ubuntu that don't give you a root user), so that a |
12 |
user can enter their own password and be restricted to a particular |
13 |
program in this case su, and keep better audit logs all thanks to sudo. |
14 |
Whilst at the same time it still gives you complete access to the |
15 |
system/login shell through su (a simpler and therefore presumably easier |
16 |
to secure program). So they can achieve the same results, but it is the |
17 |
differences in the programs and the way they work that makes people |
18 |
choose one over the other (or try and combine their best qualities). |
19 |
That's the best of my understanding, hope it helps? |
20 |
Mike 5:) |
21 |
-----BEGIN PGP SIGNATURE----- |
22 |
Version: GnuPG v2.0.14 (GNU/Linux) |
23 |
|
24 |
iEYEARECAAYFAkuKyisACgkQu7rWomwgFXp6KQCfRGn4b10R8onUVIXlaMgGJ/1o |
25 |
gpQAn1wiKNrFzlHZLKozCgaJujSUkKH4 |
26 |
=55Bj |
27 |
-----END PGP SIGNATURE----- |