So our company has, for years, set everything important to root:root, and as a result, have had to enable "no_root_squash" in /etc/exports so that files aren't shared as nfsnobody, which has in the past broken things.
We, this past week, had a user on a personal vm attempt to remove a symlink that points to an important, network shared directory with
rm -rf symlink/ Now, naturally, that recursively went through and erased everything on the server itself. Luckily there were backups, but still.
I'm a burgeoning Linux admin, but obviously this is bad. And I don't want it to happen again. But I don't think it's 'professional' for me just to put everything in my name. It needs to be in someone's name though, so I can remove no_root_squash, right?
Is there a standard?
[link][10 comments]