To me its clearly a trusted box but Im not to understand where he sees an issue:
Quote:
a) When we give wrong root password three times in a row, the root account has been disabled.
I dont know many root users knowing the box is trusted who would try 3 times in a row... usually at the 2nd attempt he would stop and think twice...
And yes even root is asked the old passwd, so if someone has changed it meanwhile not announcing it to his collegues you are looking for trouble...
Of course when you are a bit neurotic and suffer from amnesia (like me...) you work hard on alternatives e.g. replace the default value of attempts to 5, and make great usage of sudo... And most important (passwd has been changed and you dont know it ...) I grant myself (my users account) the possibility of shutdown/reboot the box...