- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: Duplicate root account.
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-18-2010 08:45 AM
тАО03-18-2010 08:45 AM
I want to create a duplicate root account, but ter is a restriction for duplication of uid 0
Then I thought of installing sudo, but that option also not accepted.
Just would like to know if any can advise, how can I get the root access for normal account.
Note: points will be equally shared :)
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-18-2010 08:49 AM
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-18-2010 08:56 AM
тАО03-18-2010 08:56 AM
Re: Duplicate root account.
Do *not* create duplicate uid=0 accounts.
You can, and then if you forget (or your successor forgets) and does something (stupid) like this (where user 'bullz' has a uid=0):
/* DO NOT DO THIS !!! */
# find /path -user bullz -exec rm -rf {} +
...then you just *removed* all of 'root's files and directories!
Regards!
...JRF...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-18-2010 09:03 AM
тАО03-18-2010 09:03 AM
Re: Duplicate root account.
waiting for good news.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-18-2010 09:26 AM
тАО03-18-2010 09:26 AM
Re: Duplicate root account.
http://www.gratisoft.us/sudo/intro.html
for installation requirements and supported environments.
Pete
Pete
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-18-2010 09:36 AM
тАО03-18-2010 09:36 AM
Re: Duplicate root account.
Pete
Pete
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-18-2010 09:49 AM
тАО03-18-2010 09:49 AM
Re: Duplicate root account.
A few views:
Now, Dana Corp. Only security department has the root password, no duplicate root accounts are permitted. We use etrust/seos to elevate the admin users to root privileges but what they can do is limited.
Previous job, NDS Jerusalem. They chose to go the duplicate uid=0 root. The primary reason was to know who did what. I was rootp(prottever) rootv was my boss Victor, etc etc.
Is it really a security hole to have multiple uid=0 accounts? Classical response which you already have is yes. But it was manageable since only qualified systems administrators had the password. Though password reset involved a meeting.
Prior to that only systems administrator, my backup(a dba eeek!) and operations had root.
I fought operators having root and proposed sudo and was overruled.
SEP
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-18-2010 10:02 AM
тАО03-18-2010 10:02 AM
Re: Duplicate root account.
"Power broker" software which is similar software like sudo for HP,
Difference between Power broker & Sudo explained in below thread
http://forums11.itrc.hp.com/service/forums/questionanswer.do?threadId=956140
Hope for >> AX, RedHat Linux, IRIX and Solaris<< -> SUDO would best approach, if not better to ask "Google" any third party SW available
http://forums11.itrc.hp.com/service/forums/questionanswer.do?admit=109447626+1268935173924+28353475&threadId=1084893
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-18-2010 10:22 AM
тАО03-18-2010 10:22 AM
Re: Duplicate root account.
Can give you the best of both worlds. The logging of sudo to see who invoke a rootsh plus the logging of rootsh to provide you with the data you want plus the capabilities of a UID=0 user without duplicating.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО03-18-2010 10:31 AM
тАО03-18-2010 10:31 AM