| 1 |
-----BEGIN PGP SIGNED MESSAGE----- |
| 2 |
Hash: SHA1 |
| 3 |
|
| 4 |
Hiya William, |
| 5 |
Sudo can be used to restrict access, so that only certain programs can |
| 6 |
be run using it. It asks for your password rather than the user you're |
| 7 |
trying to login to (unlike su). It also helps maintain a more accurate |
| 8 |
audit trail (although I don't have details on exactly how it does that). |
| 9 |
Also su I believe only allows access to people in the wheel group. |
| 10 |
Therefore, you'll see people using them in conjunction (particularly |
| 11 |
with systems like ubuntu that don't give you a root user), so that a |
| 12 |
user can enter their own password and be restricted to a particular |
| 13 |
program in this case su, and keep better audit logs all thanks to sudo. |
| 14 |
Whilst at the same time it still gives you complete access to the |
| 15 |
system/login shell through su (a simpler and therefore presumably easier |
| 16 |
to secure program). So they can achieve the same results, but it is the |
| 17 |
differences in the programs and the way they work that makes people |
| 18 |
choose one over the other (or try and combine their best qualities). |
| 19 |
That's the best of my understanding, hope it helps? |
| 20 |
Mike 5:) |
| 21 |
-----BEGIN PGP SIGNATURE----- |
| 22 |
Version: GnuPG v2.0.14 (GNU/Linux) |
| 23 |
|
| 24 |
iEYEARECAAYFAkuKyisACgkQu7rWomwgFXp6KQCfRGn4b10R8onUVIXlaMgGJ/1o |
| 25 |
gpQAn1wiKNrFzlHZLKozCgaJujSUkKH4 |
| 26 |
=55Bj |
| 27 |
-----END PGP SIGNATURE----- |
Archives