[52530] in North American Network Operators' Group
Re: Security Practices question
daemon@ATHENA.MIT.EDU (Barb Dijker)
Thu Oct 3 17:28:39 2002
Date: Thu, 03 Oct 2002 15:28:00 -0600
To: just me <matt@snark.net>
From: Barb Dijker <barb@netrack.net>
Cc: <lamour@UU.NET>, nanog@merit.edu
In-Reply-To: <Pine.GSO.4.33L0.0210031004330.26561-100000@pants.snark.net
>
Errors-To: owner-nanog-outgoing@merit.edu
>I was assuming a more complex configuration than the wide-open one
>advocated by Barb, which seems to add little to no security benefit.
>
>I'm sorry I wasn't clear on this point; of course pushing out a single
>file to n machines shouldn't be a problem.
Of course. And a complex sudoers setup can be in a single sudoers file
distributed to thousands of hosts. The sudoers syntax allows for as much
or as little complexity as suits your needs.
...Barb
