HPE Community
Operating System - HP-UX
1833053 Members
2417 Online
110049 Solutions
New Discussion

Root login

 
avm
Contributor

‎03-08-2001 08:21 AM

‎03-08-2001 08:21 AM

Root login

I have got 8 servers and all are in different places with different admins,so they are changing the root password and i am not able to do any thing when i am in crisis .Is there any way to hide my su id (0) and give root access which the others should not see?
Thanks in advance

0 Kudos
Reply
7 REPLIES 7
Tom Danzig
Honored Contributor

‎03-08-2001 08:24 AM

‎03-08-2001 08:24 AM

Re: Root login

You could create another user on the system with UID=0 or you could create a SUID root shell and hide it somewhere.

Both of these are highly discouraged for security reasons though.
0 Kudos
Reply
Rodney Hills
Honored Contributor

‎03-08-2001 08:27 AM

‎03-08-2001 08:27 AM

Re: Root login

You can use a tool called "sudo" (available from HP porting and archive center). With "sudo" you can give specific root power for those commands they need access to. Then take away the root password from them.

If the other users must have root access to their workstations, then setup .rhosts files on each of their home directories for root and allow yourself rlogin permission. You don't have to specify a password if you login to their workstation when you are logged in as root on your system.
There be dragons...
0 Kudos
Reply
John Bolene
Honored Contributor

‎03-08-2001 08:28 AM

‎03-08-2001 08:28 AM

Re: Root login

You can always have your own login id and have it with a user id of 0 (zero). You will be root and it does not matter if they change the root password.
A lot of security groups will not allow this, your group may be different.
It is always a good day when you are launching rockets! http://tripolioklahoma.org, Mostly Missiles http://mostlymissiles.com
0 Kudos
Reply
MARTINACHE
Respected Contributor

‎03-08-2001 08:35 AM

‎03-08-2001 08:35 AM

Re: Root login

Hi,

You can use SUDO : http://hpux.cs.utah.edu/hppd/hpux/Sysadmin/sudo-1.6.2b1/

You can config SUDO to launch a shell (or something else) as root for your login only.

Regards,

Patrice.
Patrice MARTINACHE
0 Kudos
Reply
avm
Contributor

‎03-08-2001 08:38 AM

‎03-08-2001 08:38 AM

Re: Root login

My problem as i have already mentioned is not putting 0 id but since the admin is supposed to chnage he will remove all users with 0 id /or disable it and i will be moving from that place and it is not faecible for me to ask him each time.so i want to give root rights to a particular user which should be hidden to everybody
0 Kudos
Reply
John Bolene
Honored Contributor

‎03-08-2001 09:08 AM

‎03-08-2001 09:08 AM

Re: Root login

So if I understand what you are asking is to create a backdoor into the system that nobody knows about?
That is not possible under HPUX unless you are able to get the operating system source code and make changes for your own use.
There must be somebody that is trusted and that person has superuser rights to change anything.
Get to be best buddies with the sysadm and ask him to let you know what the new password is when it changes.
If this is not an option, then your management must know that you need access to the machine, otherwise you are not able to do your job.
There is no other way.
It is always a good day when you are launching rockets! http://tripolioklahoma.org, Mostly Missiles http://mostlymissiles.com
0 Kudos
Reply
Brian Markus
Valued Contributor

‎03-08-2001 10:01 AM

‎03-08-2001 10:01 AM

Re: Root login

I answered your question in a different thread. You can give your self asccess to "SAM" useing Restricted sam. sam -r You would have the "Equivlent" access to root. but have a normal user id. No one would ever know.

Hope this helps

Brian.
When a sys-admin say's maybe, they don't mean 'yes'!
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.