LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Newbie
User Name
Password
Linux - Newbie This Linux forum is for members that are new to Linux.
Just starting out and have a question? If it is not in the man pages or the how-to's this is the place!

Notices



Reply
 
Search this Thread
Old 01-28-2006, 07:55 PM   #1
BenJoBoy
LQ Newbie
 
Registered: Nov 2005
Location: Sloveina
Distribution: Distro? What || how do you mean?
Posts: 4

Rep: Reputation: 0
is it legitimate and allowed and can be done to make another user account set uid and gid to null 0 to make another root account with different name and possibly not damage the debian system creating and using that new account


Hi,

relatively new to linux. Managed to bring to life Debian sid server and socialise in UNIX way. 23, from Slovenia.

Before doing any damage to my stable unstable, please clear me the subject. Can it be done?

Idea is for security reasons. Mysqlf won't publish program to egrep and replace root in every source.
It would be a fleck in UNIX to do that.

Maybe I am just to try, would some say. But then, this post never went online...

Regards,
Benjamin

_
Homo Sapiens + UNIX linux = Unimo Lapiens, from Opensource
 
Old 01-28-2006, 08:02 PM   #2
KimVette
Senior Member
 
Registered: Dec 2004
Location: Lee, NH
Distribution: OpenSUSE, CentOS, RHEL
Posts: 1,794

Rep: Reputation: 46
Longest. Thread. Title. Ever.
 
Old 01-28-2006, 08:48 PM   #3
BinJajer
Member
 
Registered: Sep 2005
Location: Warsaw, Poland
Distribution: Slackware 10.2, Caldera OpenLinux 3.1, Corel Linux (Thanks xhi!), Debian GNU/HURD etc...
Posts: 296
Blog Entries: 1

Rep: Reputation: 30
^
|
|
|
I AGREE

What do you mean "make anouther root account"? Why not just add another user to the "wheel" group?

Edit: KimVette: You sigline says:* Make your topic's title descriptive of the issue. Hmmm...

Last edited by BinJajer; 01-28-2006 at 08:49 PM.
 
Old 01-28-2006, 08:55 PM   #4
KimVette
Senior Member
 
Registered: Dec 2004
Location: Lee, NH
Distribution: OpenSUSE, CentOS, RHEL
Posts: 1,794

Rep: Reputation: 46
Yes, descriptive, but not encompass the entire post!

Excuse me while I repost the entire King James Bible in a topic title in General. (kidding)
 
Old 01-28-2006, 08:59 PM   #5
KimVette
Senior Member
 
Registered: Dec 2004
Location: Lee, NH
Distribution: OpenSUSE, CentOS, RHEL
Posts: 1,794

Rep: Reputation: 46
By the way, BinJajer is right. You can't make another user be root, and you don't WANT to hack a workaround to make it happen. It's a Bad Idea. If you need root access make your user a sudoer and use sudo, or do what BinJajer said. Or, log in as root when absolutely necessary.

On a networked computer there is absofudginglutely no reason whatsoever to make another user the same as root. If the issue is you want "root" to be named something else, just edit the name of "root" to something else in /etc/password - keeping in mind that some programs may be hard coded to the root username rather than the uid (which would be the epitome of stupidity, but I digress. . . )
 
Old 01-28-2006, 09:00 PM   #6
XavierP
Moderator
 
Registered: Nov 2002
Location: Kent, England
Distribution: Lubuntu
Posts: 19,176
Blog Entries: 4

Rep: Reputation: 430Reputation: 430Reputation: 430Reputation: 430Reputation: 430
A better and more secure idea would be to use sudo - that way you will have a log of which user issued which command.
 
Old 01-28-2006, 09:09 PM   #7
Tinkster
Moderator
 
Registered: Apr 2002
Location: in a fallen world
Distribution: slackware by choice, others too :} ... android.
Posts: 23,005
Blog Entries: 11

Rep: Reputation: 903Reputation: 903Reputation: 903Reputation: 903Reputation: 903Reputation: 903Reputation: 903Reputation: 903
To the OP:
Zdravo!

And:
I'm not certain I understand what you're up to; if it's your
own machine there's no problem to create another account with
uid 0; I fail, however, to see how that would be beneficial to
your systems security. The only "secure" thing is to operate
the machine as a normal (non-privileged) user and use either
sudo or su - (su -c maybe) to do admin tasks.

If the machine ISN'T yours there's obviously no way for it to
be legitimate.

The creation of such an account as such won't damage the installation;
however, it poses an extra risk, specially if you happen to use
that account for day to day work, and that's for two reasons:
1) You yourself are a threat; accidental deletion of directories
or even changes to ownerships/permissions while using that account
can render your system unusable;
2) If you happen to use a piece of software that has an exploit you're
unaware of the person controlling the machine at that time will have
root privileges, which is the opposite of what you wanted to achieve.


Cheers,
Tink
 
Old 01-28-2006, 09:21 PM   #8
KimVette
Senior Member
 
Registered: Dec 2004
Location: Lee, NH
Distribution: OpenSUSE, CentOS, RHEL
Posts: 1,794

Rep: Reputation: 46
I think he might be trying to rename root to something non-obvious to make cracking the box a little less (edit: I meant more difficult. Sorry about that.) difficult.

Last edited by KimVette; 01-29-2006 at 12:14 PM.
 
Old 01-29-2006, 06:22 AM   #9
BinJajer
Member
 
Registered: Sep 2005
Location: Warsaw, Poland
Distribution: Slackware 10.2, Caldera OpenLinux 3.1, Corel Linux (Thanks xhi!), Debian GNU/HURD etc...
Posts: 296
Blog Entries: 1

Rep: Reputation: 30
Renaming root to xv897897jklbinjarerisnowroot888907 would surely make the box uncrackable . Messing with the root account is very dangerous. Take my word. Yesterday, I accidentally deleted my startx script. If I hadn't had SLAX on hand, I'd be in much trouble.
 
Old 01-29-2006, 09:02 AM   #10
BenJoBoy
LQ Newbie
 
Registered: Nov 2005
Location: Sloveina
Distribution: Distro? What || how do you mean?
Posts: 4

Original Poster
Rep: Reputation: 0
Thanx for your advices |& oppinions. Helped me a lot so now I can concentrate on something more usefull than renaming root. Surely I will use su - as proposed.
Regarding long thread title, I'll try to be more compact in the future

Tinkster, you dont't know how great it is to find Zdravo or Živjo.


_
Homo Sapiens + UNIX linux = Unimo Lapiens, from Opensource
 
Old 01-29-2006, 10:17 AM   #11
BinJajer
Member
 
Registered: Sep 2005
Location: Warsaw, Poland
Distribution: Slackware 10.2, Caldera OpenLinux 3.1, Corel Linux (Thanks xhi!), Debian GNU/HURD etc...
Posts: 296
Blog Entries: 1

Rep: Reputation: 30
Ok, tis will be a spoiler, but coud you translate this
Zdravo or Živjo to your slavian neighbour? I sure hope it means smoething else than in Polish...
 
Old 01-29-2006, 10:23 AM   #12
BenJoBoy
LQ Newbie
 
Registered: Nov 2005
Location: Sloveina
Distribution: Distro? What || how do you mean?
Posts: 4

Original Poster
Rep: Reputation: 0
Zdravo means hello
živjo means hi
spoiler is a rear wing on a race car
 
Old 01-29-2006, 11:02 AM   #13
sundialsvcs
Guru
 
Registered: Feb 2004
Location: SE Tennessee, USA
Distribution: Gentoo, LFS
Posts: 5,455

Rep: Reputation: 1172Reputation: 1172Reputation: 1172Reputation: 1172Reputation: 1172Reputation: 1172Reputation: 1172Reputation: 1172Reputation: 1172
Uh huh, it's "legitimate and allowed," and you do not want to do it. Period.

You have a security system at your disposal. It can help you. Use it wisely.

This is not wise.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
creating user account with root power linux_lover2005 Linux - Newbie 6 01-04-2007 01:51 AM
system account or user account??? yenonn Linux - Newbie 6 05-10-2006 08:49 PM
creating user account similar to root neerajchaudhari Linux - Software 2 08-26-2005 10:23 AM
creating user account similar to root neerajchaudhari Linux - Newbie 4 08-26-2005 07:35 AM
Possible to make a second root account? Thaidog Linux - Newbie 8 09-21-2004 10:32 PM


All times are GMT -5. The time now is 04:51 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration