> I dunno about that.  sudo is good for multi-admin environments, but even
> then, I'm wary of having multiple privileged accounts.  (Without sudo:
> Attacker must figure out both my password and the root password.  With sudo:
> my password has (hopefully limited-use) root capabilities.  Figuring out the
> root password is not necessary.)

And run LIDS so even root has limited capability... I love you LIDS...