- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: Renaming root account...
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-06-2007 06:37 AM
тАО08-06-2007 06:37 AM
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-06-2007 06:44 AM
тАО08-06-2007 06:44 AM
SolutionI also would not want to remove the root account itself. How would you reboot into single user mode to fix a problem if there was no root account?
Pete
Pete
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-06-2007 06:45 AM
тАО08-06-2007 06:45 AM
Re: Renaming root account...
Don't. While privilege is conferred when the 'uid' (or 'euid') is zero, the name 'root' is also commonly evaluated in code.
Regards!
...JRF...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-06-2007 06:50 AM
тАО08-06-2007 06:50 AM
Re: Renaming root account...
...AND...if you create other accounts with a uid=0 and you or someone will one day forget what they are and do something stupid (!) like:
# find / -user something -exec rm -rf {} +
...NOW consider that UNIX knows the account "something" only by number, and the number was ZERO (0) just as if you typed "root" in lieu of the account "something". A dead server is what you would have.
Regards!
...JRF...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-06-2007 06:53 AM
тАО08-06-2007 06:53 AM
Re: Renaming root account...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-06-2007 06:55 AM
тАО08-06-2007 06:55 AM
Re: Renaming root account...
Rather than disable root, restrict it to console only, and install sudo for those people who need root level access - that way you at least have an audit trail
- Tags:
- sudo
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО08-06-2007 07:43 PM
тАО08-06-2007 07:43 PM
Re: Renaming root account...
Having another people as UID 0 is dangerous and should be avoided.
Root access can be restriced to console using /etc/securetty and i hope even IP restrictions can be placed for root logins using SSH.
If you need to grant other user as root privileges, you may use sticky bits(think always twice), sam -r (If the user work is possible with SAM kind of menus.)
and the best will be sudo ( You will know what is configured and a logging will be available) but in no case....... UID 0 should be duplicated.............
- Tags:
- ssh