HPE Community
Operating System - HP-UX
1835359 Members
3224 Online
110078 Solutions
New Discussion

Please help about the root question

 
Chin Meng
Occasional Advisor

‎11-30-2000 07:54 PM

‎11-30-2000 07:54 PM

Please help about the root question

Dear all HPUX experts,

I have a question about the root. I understand that as a root only has one password, but I am believe that has their way to configure one root may have two or more login as root and giving the difference passwords. I am novice in HPUX. I used the command "who" and found that the current system had two roots and two operator login into the system but given different pts/???. I do not know what does the pts/??? means?

operator pts/tb Nov 30 17:14
root pts/1 Nov 25 14:50
root pts/tc Dec 1 07:35
operator pts/td Dec 1 07:52

Thank you all experts in advance.
0 Kudos
Reply
7 REPLIES 7
Bruce Regittko_1
Esteemed Contributor

‎11-30-2000 08:37 PM

‎11-30-2000 08:37 PM

Re: Please help about the root question

Hi,

You must be running CDE, the GUI interface. Each window that is open is treated as a separate terminal and therefore as a separate login, which is why who is reporting each one although root is most likely only logged in once.

The pts entries refer to the device file used by the window. The device file for the psuedo terminal would be /dev/pts/X where X is an instance number.

You are right that root (and any other account) can only have one password. One way to get around this is to have two accounts with the same UID number. (The UID number is recorded in the third field of the /etc/passwd file.) Thus, if another account has a UID of zero, that account would also have root privileges even though it could have a different password. In effect, there is one account with two names, two passwords, two home directories, etc. Both account would own the same files, though.

Note, that having a "backdoor" account with UID 0 is a major security risk. Now potential crackers have two accounts to attack instead of one.

Hope this helps you out. If not, let me know what is still unclear and I will try again,

--Bruce
www.stratech.com/training
0 Kudos
Reply
thinphony
Advisor

‎11-30-2000 09:45 PM

‎11-30-2000 09:45 PM

Re: Please help about the root question

Hi,
Bruce is right.
In short, when you activate multi terminal windows in a workspace, there would be multi lines like pts/1 .. in the who output.
If you change a user's id to 0 in the /etc/passwd file, the user will have root privillage.

Thinphony
0 Kudos
Reply
thinphony
Advisor

‎11-30-2000 09:45 PM

‎11-30-2000 09:45 PM

Re: Please help about the root question

Hi,
Bruce is right.
In short, when you activate multi terminal windows in a workspace, there would be multi lines like pts/1 .. in the who command output.
If you change a user's id to 0 in the /etc/passwd file, the user will have root privillage.

Thinphony
0 Kudos
Reply
Dan Hetzel
Honored Contributor

‎11-30-2000 10:26 PM

‎11-30-2000 10:26 PM

Re: Please help about the root question

Hi,

I totally agree with Bruce. Having more than one account with UID (user ID) 0 is a major security risk.
It's just like having a safe with two or more doors. Would you really put all your money in such a safe ??

If you want to give other people some root privileges, consider using 'sudo' which is a really nice utility. It has the advantage of logging all commands so you'll still be able to tell WHO did WHAT on your system.

Here is the link to the main page:
http://www.courtesan.com/sudo/sudo.html

Best regards,


Dan
Everybody knows at least one thing worth sharing -- mailto:dan.hetzel@wildcroft.com
0 Kudos
Reply
Chin Meng
Occasional Advisor

‎12-01-2000 01:08 AM

‎12-01-2000 01:08 AM

Re: Please help about the root question

Thank you for all helping me.

Thank you to Bruce.

What is the CDE? Meaning now, the system has been configured in two guys could login the system with their own password, right? How is the other guy have changed the root password, is that the second guy will be effected with problem login his password as a root?

How for me to know who is who?
How to change it back to default?
Where to check the UID?

Thank you so much for all experts.
0 Kudos
Reply
Rainer_1
Honored Contributor

‎12-01-2000 03:24 AM

‎12-01-2000 03:24 AM

Re: Please help about the root question

root has the UID 0 as defined in /etc/passwd
CDE is the Common Desktop Environment used on graphical displays (usually workstations but also available at servers with graphic cards)
To have a closer look for who is who type

who -T

this will show at the end of each line from where the login comes.
0 Kudos
Reply
Dan Hetzel
Honored Contributor

‎12-01-2000 03:53 AM

‎12-01-2000 03:53 AM

Re: Please help about the root question

Hi,

If you want to avoid people to login as root from any terminal other than the system console, simply create the file (as root) /etc/securetty with the single line 'console' in it.
This can be done simply as follows:
# echo console > /etc/securetty

By doing this, you would force people to use their own login, and to use 'su' or 'sudo' when they want root privileges. In that case, you'll be able to trace what people are doing.

Dan
Everybody knows at least one thing worth sharing -- mailto:dan.hetzel@wildcroft.com
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.