We have a running debate in our office that i would like some clarity on. We configure our Linux servers with individual user names, but to run commands with root priveleges, people run su -. I have read in other places where sudo su - should be used with the root password disabled, but no clear reason as to why from a security standpoint.
I know one reason is because everyone would have to know the root password, but can someone please tell me why sudo su - should be used instead and the root password disabled? It would also be good to hear if either is OK, or if someone feels strongly about one vs. the other just to get a sense how others view this.
I also know that using sudo you can limit peoples use of root priveleges, so i just wanted to mention that so i could get other reasons why.
Thanks in advance!