response 101 of 110:

May 11 00:34 UTC 1996

Richard, most newbies think a root is only a below-ground extensin of a plant!

response 103 of 110:

May 11 06:51 UTC 1996

cfadm doesn't need (or necessarily have) root.  The webmaster sort of
does, but mostly to (a) deal with the daemon (which can, in fact, be
described as a "sysop" function), and (b) various user service issues
(which also fit that awfully vague term, "sysop function").  We
certainly don't have a "helpmaster" per se - no reason to give somebody
we don't have root.  Most of the people who have root are also people we
trust with dungeon keys and therefore, de facto, have access to
everyone's files anyways.

There are two policies we could have followed with respect to root
access.  (1), be very paranoid about it, restrict it to a few very
overworked fools, and try to come up with tools to farm out at least
*some* of the effort, or (2) assume people who can be trusted with
*some* of the system can also be trusted with the rest, and assume
anyone who can't be fully trusted, shouldn't be trusted at all.  So many
things, like physical access to the machine, ability to install
software, and all that, turn out to be basically equivalent to each
other, that we've ended up deciding that (2) is less work than (1).

"We" in this case means the founders and early staff members.  No system
is fool-proof, and there *have* been a few minor incidents that have
served to remind us that we need to take care, but on the whole, I don't
think we've managed any worse, we've certainly gotten much more done
than we possibly could have otherwise, and there are actually ways in
which having *more* roots is *beneficial* to security.  That means more
eyes to watch to see that things get done, and also more eyes to catch
each other's mistakes and oversights.

My guess is that the average "newbie" neither knows nor cares how the
system is run, and that the fraction of any of total users, newbies, or
old-timers who care at *all* about system security is very small.  I am
constantly amazed at people who think they *have* to tell you their
password via e-mail.

Certainly a "rogue root" is a possibility, but I would like to think
that the rest of us would figure it out pretty fast, and if staff didn't
do something first, I would like to think that the board, or the members
at large, would take action.  In the final analysis, that's the only
real solution to the problem; if staff, board, & members are willing to
tolerate a rogue root, then no solution, no matter how elaborate, is
going to work.

response 105 of 110:

May 11 22:55 UTC 1996

I do, however, use my root account to rename graphics
files in users' www directories, which saves us all
a lot of bandwidth.

response 107 of 110:

May 12 11:38 UTC 1996

For information: Arbornet (so some say) has 6 people with root access, four
of whom are in training. Some people there say the response time to problems
is much better here than there. Does this mean anything? Bouncing between the
two systems leads me to believe that Grex is administered very well in
comparison with respect to technical problems. <the lower case "bullshit" is
a step in the right direction! Good work Selena! I will change your grade from
"Unsatisfactory" to "Needs improvement" :-)>

response 109 of 110:

May 12 19:58 UTC 1996

Robh is also one of the people who fixes dot files and such upon user
request, an equally valuable function.