I wrote a new article today that gives some best practices for the old problem of access controls, and what to implement on a Linux server. Often through my work, a client will give out the root password to every coder, consultant, and admin that touches the server. Sometimes the client will change the password at random intervals, but usually this is not the case.
I wrote this article to make others more aware of the large threat that this poses to server stability and security. As outlined in the article, sometimes these access control restrictions are set in place not only for security reasons, but also for stability issues (in the event of an errant script).
Here is the article:
http://linuxconsultant.info/tutorials/access-control-restrictions-linux-best-practices.html
