From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1N9YJ1-0000y9-HJ for garchives@archives.gentoo.org; Sun, 15 Nov 2009 06:09:47 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 27355E09CD for ; Sun, 15 Nov 2009 06:09:47 +0000 (UTC) Received: from smtpout.karoo.kcom.com (smtpout.karoo.kcom.com [212.50.160.34]) by pigeon.gentoo.org (Postfix) with ESMTP id 932CCE06E7 for ; Sun, 15 Nov 2009 05:15:47 +0000 (UTC) X-IronPort-AV: E=Sophos;i="4.44,745,1249254000"; d="scan'208";a="149162105" Received: from unknown (HELO compaq.stroller.uk.eu.org) ([213.152.39.90]) by smtpout.karoo.kcom.com with ESMTP; 15 Nov 2009 05:15:46 +0000 Received: from funf.stroller.uk.eu.org (funf.stroller.uk.eu.org [192.168.1.71]) by compaq.stroller.uk.eu.org (Postfix) with ESMTP id C20F512499 for ; Sun, 15 Nov 2009 05:15:44 +0000 (GMT) Message-Id: <28BB57B2-61EB-4A5C-97CF-6F6C0D582FE3@stellar.eclipse.co.uk> From: Stroller To: gentoo-user@lists.gentoo.org In-Reply-To: <200911142246.44419.alan.mckinnon@gmail.com> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes Content-Transfer-Encoding: 7bit Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 (Apple Message framework v936) Subject: Re: [gentoo-user] Block root user from login on xorg GUI Date: Sun, 15 Nov 2009 05:15:43 +0000 References: <200911122001.57860.michaelkintzios@gmail.com> <200911141932.56013.michaelkintzios@gmail.com> <200911142246.44419.alan.mckinnon@gmail.com> X-Mailer: Apple Mail (2.936) X-Archives-Salt: 9bfc64f3-6b1c-47e1-b883-2dc67dd408fc X-Archives-Hash: 933ec83b0f1b9c95eaf763262134246e On 14 Nov 2009, at 20:46, Alan McKinnon wrote: >> ... >> You are right of course, but in this particular case the guy who pays >> wants to have root access. > > And you agreed to work like that? > > So when he fucks things up good royal and proper, will he gladly > accept his > shafting and pay you more to undo it? Or will he do the usual > customer stunt > and blame you? My typical experience is that the customer will take it completely on the chin and pay me to fix the problems. That doesn't make foul-ups due to such unnecessary meddling any less frustrating, though. > I only work under one of two conditions: > > I am root and the customer is not. > The customer is root and I am not. This is clearly the "right" way to operate, however it can be extremely difficult to walk away from your largest-paying contract, just because the owner sees this particular issue differently. One has to hope, really, that the client only wants the root password as insurance in case you get run over by a bus, and won't use it to arbitrarily mess about on the system. Stroller.