cancel
Showing results for 
Search instead for 
Did you mean: 

root login

eric_204
Frequent Advisor

root login

My RH 7 system don't access user to directly login as root on the remote desktop - root user need to login as general user and then su as root , could suggest how to disable this function so that root user can login as root in any desktop ? thx
9 REPLIES
Madhu Sudhan_1
Respected Contributor

Re: root login

Add pts/1 ....pts/10 and so in /etc/securetty for the root use to be able to login remotely or use ssh with PermitRootLogin yes set in sshd_config. This requires you to bounce sshd.

HTH
-Madhu
Think Positive
Jerome Henry
Honored Contributor

Re: root login

That's part of a normal security process. You should always log in as user, su - root, and then perform admin actions, such as login to remote desktops.
Two solutions :
- upgrade (kidding :]] )
- Add these lines to /etc/securetty:
0
1
2
3
4
5
6
7
8
9
It should work. If not, post the exact error message...

hth

J
You can lean only on what resists you...
eric_204
Frequent Advisor

Re: root login

thx reply, but i can't find the pts in /etc/securetty , can suggest other solution ? thx.
Mark Grant
Honored Contributor

Re: root login

Just remove /etc/securetty if you are not too worried about the issues.
Never preceed any demonstration with anything more predictive than "watch this"
Steven E. Protter
Exalted Contributor

Re: root login

You could maintain the security, issue the user a normal user id.

After login, su - root
give the root password.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
eric_204
Frequent Advisor

Re: root login

my /etc/securetty like the below , just remove the file or just remove one of entry ? thx

vc/1
vc/2
vc/3
vc/4
vc/5
vc/6
vc/7
vc/8
vc/9
vc/10
vc/11
tty1
tty2
tty3
tty4
tty5
tty6
tty7
tty8
tty9
tty10
tty11
rsh
rlogin
eric_204
Frequent Advisor

Re: root login

We are using the telnet as the login tools in the system , could suggest what can i do to disable this function ? thx.
Mark Grant
Honored Contributor

Re: root login

eric, just mv the file to a different name (so that you can move it back if you want).
Never preceed any demonstration with anything more predictive than "watch this"
Jerome Henry
Honored Contributor

Re: root login

Better use ssh.
To disable telnet, go to /etc/xinetd.d/, edit telnet, and set disable to yes.
Better do the same for rlogin too.

J
You can lean only on what resists you...