LinuxQuestions.org
Go Job Hunting at the LQ Job Marketplace
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Software
User Name
Password
Linux - Software This forum is for Software issues.
Having a problem installing a new program? Want to know which application is best for the job? Post your question in this forum.

Notices

Reply
 
Search this Thread
Old 11-15-2006, 03:20 AM   #1
jon_k
Member
 
Registered: Jul 2003
Location: Fort Worth, Texas
Distribution: Mepis Linux 2004
Posts: 547

Rep: Reputation: 30
Auto login on first console?


I'm running a couple of servers here and it is often a pain to log in via root via console every time I need access.

Is there a way you can configure the console to autologin as root on every startup, that way quickly troubleshooting a problem can be done without having to log in?

It also helps cause some of our customers change their root passwords and having to get an update on the password can cause trouble.

Thanks. I've googled quite a bit but can't dig up anything useful.
 
Old 11-15-2006, 03:28 AM   #2
b0uncer
Guru
 
Registered: Aug 2003
Distribution: CentOS, OS X
Posts: 5,131

Rep: Reputation: Disabled
Quote:
Is there a way you can configure the console to autologin as root on every startup, that way quickly troubleshooting a problem can be done without having to log in?
I would hope there wasn't, but it seems in Linux you can do pretty much whatever you like. Anyway, you don't don't don't want to autologin as root, it's probably the most idiotic thing to do (right after kicking your boss in the face); that way anybody could get root access and do nasty stuff. Root should only log in in case of an emergency, even the regular administrative tasks should be done by logging in as some non-root user and then using sudo or su to handle the root stuff, and stop using it when not necessary.

Would you really want to have your server to automatically log in as root, giving full permissions to the first dude who gets to the place? No, I doubt you do. And if you think about your customers, nor do they.
 
Old 11-15-2006, 07:08 AM   #3
jon_k
Member
 
Registered: Jul 2003
Location: Fort Worth, Texas
Distribution: Mepis Linux 2004
Posts: 547

Original Poster
Rep: Reputation: 30
I still insist on how to do it though.

If somebody has physical access to your server, a password is a small roadblock of a few minutes if somebody is dedicated to getting in.

This is a secure facility (and I mean very secure, with badge access and everything, only a few people are allowed in this room) if anyone were to get in here with physical access it would mean a bigger problem then a single machine being compromised.

I wouldn't do this to a public kiosk, but in this type of facility it seems logical.

I'm quoting one of the 10 Immutable Laws of Security here (Published by Microsoft, unfortunately, but good/funny anyways)

Law #3: If a bad guy has unrestricted physical access to your computer, it's not your computer anymore

* He could mount the ultimate low-tech denial of service attack, and smash your computer with a sledgehammer.
* He could unplug the computer, haul it out of your building, and hold it for ransom.
* He could boot the computer from a floppy disk, and reformat your hard drive. But wait, you say, I've configured the BIOS on my computer to prompt for a password when I turn the power on. No problem – if he can open the case and get his hands on the system hardware, he could just replace the BIOS chips. (Actually, there are even easier ways).
* He could remove the hard drive from your computer, install it into his computer, and read it.
* He could make a duplicate of your hard drive and take it back his lair. Once there, he'd have all the time in the world to conduct brute-force attacks, such as trying every possible logon password. Programs are available to automate this and, given enough time, it's almost certain that he would succeed. Once that happens, Laws #1 and #2 above apply.
* He could replace your keyboard with one that contains a radio transmitter. He could then monitor everything you type, including your password.
 
Old 11-15-2006, 12:42 PM   #4
johnson_steve
Senior Member
 
Registered: Apr 2005
Location: BrewCity, USA (Milwaukee, WI)
Distribution: Xubuntu 9.10, Gentoo 2.6.27 (AMD64), Darwin 9.0.0 (arm)
Posts: 1,152

Rep: Reputation: 46
wow! well you can't stop someone from shooting themselves in the foot so here you go:
Code:
edit this file: /etc/inittab

and change this:
# TERMINALS
c1:12345:respawn:/sbin/agetty 38400 tty2 linux

to this:
# TERMINALS
c1:12345:respawn:/bin/bash

I only know this becase mine looks like this:
# TERMINALS
c1:12345:respawn:su - steve startxfce4

so I can have autologin to xfce without a display manager.
I would never do what you want to do.

Last edited by johnson_steve; 11-15-2006 at 12:43 PM.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
auto login as root (or other user) in console mode Peter_Peck Linux - General 4 05-01-2009 02:05 AM
Auto-logout on console switch cjpsparks Linux - General 2 11-20-2003 02:54 AM
Is it possible to auto login from console rrautens Linux - Newbie 10 10-15-2003 09:30 AM
Auto-login and auto-restart... TankerKevo Red Hat 2 10-04-2003 07:52 AM
auto url parsing on console bluecadet Linux - General 1 12-18-2001 04:07 AM


All times are GMT -5. The time now is 04:42 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration