HPE Community
Operating System - HP-UX
1838687 Members
5776 Online
110128 Solutions
New Discussion

Accounts with UID=0 can access remotely

 
Bertha Ramírez
New Member

‎01-29-2003 03:25 PM

‎01-29-2003 03:25 PM

Accounts with UID=0 can access remotely

Hi,

I'm checking the security of one HP-UX 10.20, there are some accounts with root privileges (UID=0). The problem is: i don??t want to these accounts login remotely to the system. I know that /etc/securetty force root to login from console. Is there something similar with other accounts (no root)?

Thanks
0 Kudos
Reply
3 REPLIES 3
James R. Ferguson
Acclaimed Contributor

‎01-29-2003 03:31 PM

‎01-29-2003 03:31 PM

Re: Accounts with UID=0 can access remotely

Hi Bertha:

If an account's uid=0 then its "root" for all purposes. It's the 'uid' that's stored in the inode for a file, and the translation of uid-to-name is simply made by finding the uid value in /etc/passwd to derive the name (the first match).

Regards!

...JRF...
0 Kudos
Reply
Bertha Ramírez
New Member

‎01-29-2003 03:39 PM

‎01-29-2003 03:39 PM

Re: Accounts with UID=0 can access remotely

Thanks JRF; the system needs these kind of accounts (so i shouldn't change de uid), but i don't want to this accounts can login to the system remotely. Is there something else i can do?

Regards.
0 Kudos
Reply
Michael Tully
Honored Contributor

‎01-29-2003 03:49 PM

‎01-29-2003 03:49 PM

Re: Accounts with UID=0 can access remotely

Make sure that there are no .rhosts files that have entries for these servers for each of these accounts that have the uid=0
Anyone for a Mutiny ?
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.