- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - Linux
- >
- Re: Remove Root Password
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-18-2008 11:25 PM
тАО06-18-2008 11:25 PM
Remove Root Password
I have one linux machine on which i want to delete the root password.
My aim is to issue some commands(mostly which require root priviledge) from remote machines and for which i'm thinking of issuing rsh(not the kerberos rsh) from remote machines.
i.e.
[user@remote] /usr/bin/rsh
To achieve the same, i did:
[root@target] passwd -d root
[root@target] service sshd restart
After this i checked the /etc/shadow file on
entry was removed, but still the target machine prompts for password
and as i've already deleted the password, hence even if i provide the
correct last password, it doesn't work ;(
[user@remote] /usr/bin/rsh
root@
Permission denied, please try again.
what am i missing.
i know i can setup password less ssh, but why *this* not working.
i remember being able to do this on HP-UX 11iV3 Successfully, only instead
of 'rsh', i had 'remsh'
~amit
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-19-2008 01:43 AM
тАО06-19-2008 01:43 AM
Re: Remove Root Password
1) the passwords on the local and target hosts are not the same.
2)the local-user account is not known at the remote host
You can also use "hosts.equiv" and ".rhosts" files to accept logins without specifying a password.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО06-19-2008 07:50 PM
тАО06-19-2008 07:50 PM
Re: Remove Root Password
And by the way, there is no need to restart sshd if you change (or even delete) passwords: sshd will detect the change automatically.
Many remote login services in Linux have a safety feature: if an account has no password, it cannot be used for remote connections. This is usually implemented with the PAM settings (in the /etc/pam.d directory): either the "auth" section for the service does not have the "nullok" option, or it uses the "nullok_secure" option which allows only local logins if password is not set.
Sometimes other accounts will be allowed to go without passwords, but the root account is the most likely to have this protection.
This feature was developed because too many newbie Linux users connected their machines to the Internet with no passwords or any other protection, got their machines hacked, and then complained about it to the builders of their Linux distribution.
With remote logins, the machine will always prompt for a password, even if the specified user account is locked or even non-existent: this is to prevent anyone with no valid user account from finding out which usernames do exist on the system.
My advice: *never* allow a passwordless root account. Leaving a root account without a password is a quick way to lose a sysadmin job if someone requires a security audit. A good Unix sysadmin should *instinctively* react to passwordless root accounts with the deepest suspicion.
MK
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-29-2008 11:49 PM
тАО07-29-2008 11:49 PM
Re: Remove Root Password
I attached a doc how make a remote login using ssh on linux. I used this for sending automated commands with a script on several Linux machines. Hope that this help
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-30-2008 11:31 AM
тАО07-30-2008 11:31 AM
Re: Remove Root Password
Secure shell is so easy to install and use, (its free) that there is no reason to use anything else. It even scripts much more nicely than the Berkley processes do.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-30-2008 11:38 AM
тАО07-30-2008 11:38 AM
Re: Remove Root Password
PermitRootLogin without-password
in sshd_config. By doing this root can only login with key authentication. The other part I like is that even if you know root's password it won't let you login.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-30-2008 11:39 AM
тАО07-30-2008 11:39 AM
Re: Remove Root Password
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-30-2008 12:56 PM
тАО07-30-2008 12:56 PM
Re: Remove Root Password
Also, as others stated, this is a bad idea, use ssh. no reason to even install the r-tools.