LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Red Hat (http://www.linuxquestions.org/questions/red-hat-31/)
-   -   Root login disabling in GUI (http://www.linuxquestions.org/questions/red-hat-31/root-login-disabling-in-gui-637246/)

shivanrathore 04-23-2008 04:45 AM

Root login disabling in GUI
 
Can somebody help me -would like to disable root login only in GUI

Simon Bridge 04-23-2008 09:15 AM

Um - you mean, you don't want users to have access to "su"? But you want to be able to log-in as "root" at the start?

It's not clear what this will solve - if the root password is not secure, it doesn't matter.

The most complete approach is to randomize the root password, and enable sudo for one user. Now nobody knows how to log in as root and nobody needs to.

tamusjroyce 05-12-2008 05:23 PM

I think he means disabling root access to X11
 
I believe he means disabling root access to X11 all together--not enabling console access on bootup.

I also want to know how to do this in two cases:
1. You are in xdm (kdm or gdm) and you try to log in as root (by habit).
2. You boot up in the console (by selecting console boot up in grub or lilo), log in as root, and execute startx, startkde, gnome-session, ...

In both cases I want to know how to disable X from allowing this. Then I want to know how to revert back to allowing root to access the X server again (well, probably a given, but just in case).

My guess is that it's a file permission based thing where root isn't allowed to read or execute from X directory, but the point of root is to be able to read/write/execute everywhere, so that can't work.

Maybe it's X which holds which users can and can't load up X, or if it has an option in it's configuration somewhere to disallow X from being accessed by root.

I'll agree that it's a cleaver idea to scramble the root password, but there is still an extremely big security whole when someone su's into root and accesses X by running a gui program--which is why kdesu and such exists to run a root program through a user's X...

Randomizing the root password only increases security when combined with what I want to know, so thanks very much, Simon Bridge, for that idea. That is something I will do in the meantime : )

In any case, any info would be appreciated. This is also the first link in google when searching "root access to gui," so maybe by answering this for me you can help others searching for an answer too...

Thanks in advance,

Tamus Royce


All times are GMT -5. The time now is 12:40 AM.