- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- To keep the root password
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-05-2009 11:18 PM
тАО11-05-2009 11:18 PM
To keep the root password
Therefore , I would like to ask what is the best way to prevent the lost of root password in my case , I know if release the .ssh without password to another server , it can prevent the password lost but I concern the security issue .
Can you please advise the way . Thanks
ps. the administrators must have all server's password , this is company policy so I can't assign the root premission to a specific administrator .
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-05-2009 11:31 PM
тАО11-05-2009 11:31 PM
Re: To keep the root password
Hence it is advised to use "sudo".
You can ssh to any remote host using your login credentials and then do "sudo su -" to get root login.
Hope this helps
Sunny
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-06-2009 08:40 AM
тАО11-06-2009 08:40 AM
Re: To keep the root password
implement Sudo or power broker
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-06-2009 08:57 AM
тАО11-06-2009 08:57 AM
Re: To keep the root password
Use sudo. i will prevent you to login directly with root or to anything with the root password.
i hope you find your answer.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-06-2009 09:12 AM
тАО11-06-2009 09:12 AM
Re: To keep the root password
right..and they probably did it by getting root access and typing
passwd
-instead of-
passwd
you could write a script that takes the place of the normal passwd command and prevents the first form...potentially messy
or you could set up passwordless login via ssh and keys allowing you access to the server to fix root's passwd when its accidentaly been changed. Still allows the root password to be changed accidentally, but gives you a way in to fix it without going into single-user mode.
I don't believe sudo will fix that issue, as the user with access to the passwd command can still use the first form of the command and "accidentally" change root's password.
PowerBroker might allow you to script this, but it would be a relatively expensive proposition. It could, however, allow you to identify the party(ies) that are doing this...
Unfortunately, technology doesn't fix carelessness....it can only mitigate the fallout.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-06-2009 11:06 AM
тАО11-06-2009 11:06 AM
Re: To keep the root password
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО11-06-2009 11:14 AM
тАО11-06-2009 11:14 AM
Re: To keep the root password
of course, anything eliminates the need to hand out the "root" password willy-nilly would be a good thing.
Auditors / compliance officers must have a field day with this as it currently set-up