by Someone on #lopsa recently asked what he should tell an auditor who wants the root account completely disabled on a Unix system. The analogy I could come up with is:
Disabling root would be akin to cutting the master key to a building in half and making parts of the building unusable at certain times. You wouldn’t be able to access things in emergencies to fix them, for example.
What other ways would you use to describe this?