Published at LXer:
Without proper controls, anyone with access to the root account -- the virtual "keys to the kingdom" -- is given complete super-user privileges without justification based on their job classification, specific duties or role within the IT department. This violates the security best-practices doctrine of least privilege, and can expose proprietary systems and information to malicious activity and sabotage.
Read More...