J
James Kuyper
Richard said:Not really. What it boils down to is that a useable, manageable,
controllable network, in a more-than-a-couple-of-dozens-of-users
environment, where the average user has access to that CLI, cannot be
perfectly safe.
How does that differ from a network where the average user doesn't have
access to a CLI? Of course nothing is perfectly safe, but I presume that
you're suggesting that having CLI access lowers the safety. That implies
that the CLI poses some unique dangers that are not available through
GUIs. What would those dangers be? Virtually anything I can do with a
CLI can also be done by using a GUI text editor to create a shell script
containing those same commands, and then executing that shell script
from a GUI file browser.
The average user should not have the permissions needed to do anything
more dangerous than deleting or corrupting every file he owns, or
accidentally installing a virus, and it's just as feasible to do those
things from a GUI as from a CLI. In fact, I think it's probably easier
to accidentally install a virus with a GUI.