Path: utzoo!utgpu!news-server.csri.toronto.edu!rpi!zaphod.mps.ohio-state.edu!samsung!umich!csd4330a!newsserv!jgarb From: jgarb@csd4330a.erim.org (Joe Garbarino) Newsgroups: comp.admin.policy Subject: Policies concerning root privs Message-ID: Date: 4 Jun 91 04:23:17 GMT Sender: news@newsspool.erim.org Organization: Environmental Research Institute of Michigan, Ann Arbor, Michigan Lines: 17 I'm sure this has been discussed to death in other groups, but I haven't seen it and this seemed to be an appropriate place. I am responsible for some 40 workstations. These workstations are all connected to the Internet, and are dispersed among 18 different groups, each of which would like to have root privileges on their machines. Is this a good/bad idea? What policies have various sites developed to deal with this question? If it's a bad idea, what are various methods for dealing with groups that demand they have root privilege? Any advice for sites on how to approach revoking privileges? -- Joe Garbarino -- ERIM jgarb@erim.org