We used to have the following philosophy : root is not powerful anymore. The new philosophy is : root is not needed anymore. The aim is to shape as accurately as possible the normal users for them to have enough privileges to run for example a daemon, and use the fact you can have multiple users to begin a sort of compartment with users, so that if you break into httpd, you can't access mysqld.