|
|
|
|
|
|
by incomplete
1060 days ago
|
|
|
fwiw i think the article is talking about root on their lap/desktop machines, not production. and regarding production, pure root access was revoked for everyone YEARS ago and replaced w/user and admin role accounts. admin was severely restricted, and could do most (but not all) things that root could do. this was for a server only, not accessing anything in borg/omega. also, if a rando package was installed on a prod server there are safeguards in place that would detect a change and wipe it immediately. in my time that was called the 'assimilator'. i'm sure that a very, very select few have actual root/sudo. (disclaimer: i worked there 03-11, the role accounts were rolled out in 08 or 09 IIRC. things could be different now, and if so probably even more restrictive) |
|
|