LinuxQuestions.org
Share your knowledge at the LQ Wiki.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Desktop
User Name
Password
Linux - Desktop This forum is for the discussion of all Linux Software used in a desktop context.

Notices


Reply
  Search this Thread
Old 11-10-2011, 11:28 PM   #1
Hamerins
LQ Newbie
 
Registered: May 2011
Distribution: Backtrack 5 R1, Fedora 16 Security Spin, Archlinux
Posts: 25

Rep: Reputation: 0
Enable Root login in Fedora 16 Security Spin


Hello all,


I have downloaded and installed the Fedora 16 Security Spin and i am unable to login as root from the gui login.

I followed the procedure that is used to login as root in fedora 16 gnome version. but i am not able to find the similar files for Fedora 16 Security Spin

The method i followed was

configure pam authentication files gdm and gdm-password respectively for ( lxde the files are lxdm and ??).

vi /etc/pam.d/gdm //instead of gdm i configured the file lxdm
find following line

auth required pam_succeed_if.so user != root quiet

comment out by placing # at beginning to disable this check

#auth required pam_succeed_if.so user != root quiet

save and close the file.

vi /etc/pam.d/gdm.password //i was unable to find the similar file for lxde ie lxdm.password file

find following line

auth required pam_succeed_if.so user != root quiet

comment out by placing # at beginning to disable this check

#auth required pam_succeed_if.so user != root quiet

save and close the file. Now logout from terminal or GUI and relogin with root from GUI.


Can Someone Please help me to enable root login in Fedora 16 Security Spin?

Thanks in advance,
Hamerins
 
Old 11-11-2011, 12:26 AM   #2
John VV
LQ Muse
 
Registered: Aug 2005
Location: A2 area Mi.
Posts: 17,531

Rep: Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622
You DO NOT log in as root into gnome .

if you MUST login as root login in singleuser mode . ( text only )

login as your normal user and type in " su -" then the root password
 
Old 11-11-2011, 02:08 AM   #3
Hamerins
LQ Newbie
 
Registered: May 2011
Distribution: Backtrack 5 R1, Fedora 16 Security Spin, Archlinux
Posts: 25

Original Poster
Rep: Reputation: 0
I know the risks of logging in as root but most of the tasks that i do need root privilege. So rather than logging in as root or swithch user using su- or sudo, i would like to login as root.

Please let me know the alternate password file of lxde.

Thanks
Hamerins
 
Old 11-11-2011, 08:31 PM   #4
jefro
Moderator
 
Registered: Mar 2008
Posts: 21,227

Rep: Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448
I'd suggest using sudo if you are trying to be secure. Seems odd to use a high security OS and then use bad practices.
 
Old 11-11-2011, 09:12 PM   #5
John VV
LQ Muse
 
Registered: Aug 2005
Location: A2 area Mi.
Posts: 17,531

Rep: Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622
sudo is also not set do to security concerns
su and su - are the default


if you wish to use "sudo" then YOU need to set it up.
 
Old 11-12-2011, 11:42 AM   #6
jefro
Moderator
 
Registered: Mar 2008
Posts: 21,227

Rep: Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448Reputation: 3448
Sometimes we have to use su I agree. I just don't feel it should be used as a general admin or power user task.

The basic issue is the OP gets a secure distro and then starts off with what I think is a bad practice. You have pointed out that one should not log on as root in the gui.

Sudo is limited, sudo has timeout usually, sudo doesn't allow malicious code to be run in background or at least is designed to help prevent it. Being turned off by default is a good thing not a sign that the choice is dangerous. You want to decide the level of access and restrict it to the very lowest in every case. You restrict higher level access to the least amount of time in all cases and the least access needed.

Systems get hacked by bad practices as well as bad code and even bad hardware.

My favorite was leaving usb drives in a parking lot to distribute a virus.

Last edited by jefro; 11-12-2011 at 11:46 AM.
 
Old 12-30-2011, 02:45 PM   #7
Shivaram.mamindlapalli
LQ Newbie
 
Registered: Sep 2011
Posts: 3

Rep: Reputation: Disabled
Hello all,

I want help in the same area.

I have installed Virtual Box and when I am trying to make virtual disk , it is throughing error. I believe this is due to Less preveliges. So,

I WANT TO LOGIN AS ROOT INTO MY FEDORA 16 , IN GUI..

Please Please Please help me on this..

Regards,
Shivram.
 
Old 12-30-2011, 02:49 PM   #8
Shivaram.mamindlapalli
LQ Newbie
 
Registered: Sep 2011
Posts: 3

Rep: Reputation: Disabled
Yuppie.. I got a clue here..

http://www.tejasbarot.com/2011/11/09...-on-fedora-16/

@Hamerins hope this helps you too.
 
Old 12-30-2011, 07:11 PM   #9
John VV
LQ Muse
 
Registered: Aug 2005
Location: A2 area Mi.
Posts: 17,531

Rep: Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622Reputation: 2622
Shivaram.mamindlapalli
some WARNINGS
root gui login is a very BAD practice
now besides that
Other thinge will not work right or will NOT WORK AT ALL
if you login as root into the gui the pop up asking for the root password is STILL enabled and entering the root password WILL NOT WORK

to update the system or edit some system files you WILL need to log out and log in AS a normal user
THEN enter the root password in that pop-up

that pam hack has A WHOLE LOT of unintended consequences

i do not give one "bleeping" pile of "BLEEP" about YOUR computer
you can "bleep" it up all you want
BUT
when YOUR actions threaten OTHERS by having your computer turned into a "zombie"
THEN WE CARE ABOUT OUR MACHINES
we do not want to be attacked by YOUR computer !!!!
 
1 members found this post helpful.
Old 12-31-2011, 01:18 AM   #10
Shivaram.mamindlapalli
LQ Newbie
 
Registered: Sep 2011
Posts: 3

Rep: Reputation: Disabled
JohnVV
As Im new to linux, just exploring the things..

Thanks for guiding me with warnings..
 
Old 12-31-2011, 04:21 PM   #11
honeybadger
Member
 
Registered: Aug 2007
Location: India
Distribution: Slackware (mainly) and then a lot of others...
Posts: 855

Rep: Reputation: Disabled
What is wrong with these people? I really fail to understand why is it so difficult to type in the root password - the OP should use xp instead. Inspite of so many warning by so many people not to do a perticular thing the OP just goes on with his own story. And why does anyone want to log in as root so many times?
 
Old 01-01-2012, 10:44 PM   #12
Hamerins
LQ Newbie
 
Registered: May 2011
Distribution: Backtrack 5 R1, Fedora 16 Security Spin, Archlinux
Posts: 25

Original Poster
Rep: Reputation: 0
Hello All,

In my work area, we need to check the network secutity once in every month and have to find fixes for security bugs.The scripts and the tools which we run requires full root privilege. we were just testing fedora secutity spin as a host os to run the scripts. we basically use backtrack since it has more penetration testing applications. Thats why we need to run as root.

Since i was out of office for some time i was not able to continue my research with fedora. i am planning to restart my work with fedora some times this week.

@Shivaram this particular pam hack will work only for Fedora with Gnome since all the pam files that we modify are for gnome(if you are using KDE, You will have to find the alternate pam hack files for KDE). As i mentioned in my first post i was not able to find the file gdm.password or any similar kind of file for the fedora security spin since it uses lxde.

I am also having a plan to Start a security spin distro with custom kernel project, but i am confused whether to create a entirely new distro or to derive a distro from a base distro...

Well I can tell you guys that what i need..

A custome kernel like backtrack.
Most of the security applications from backtrack, Fedora security spin, Grml Live Linux, Network Security Toolkit, Pentoo.
Support for the latest hardware.
Also must contain WINE to run some windows applicaitons for cross platform testing.
it must be lightweight, Prefering e17 desktop environment.

If you guys have any distro in suggestion please let me know. i will give that distro a try..

Regards,
Hamerins.
 
Old 03-07-2012, 01:22 PM   #13
montyw47
LQ Newbie
 
Registered: Jan 2004
Distribution: Suse & Mandrake
Posts: 10

Rep: Reputation: 0
with the problems installing just flash (requires root not su login) I will recommend AGAINST using Fedora in our shop. Gui root vs level 1 login Sounds like the politics on TV with root login = birth control same AGRUMENTS. No one will listen to reason. I just had a popup for signing a package as trusted but w/o root can't do.

Tried the pam/d hack but did NOT work.
 
Old 03-07-2012, 01:26 PM   #14
snowday
Senior Member
 
Registered: Feb 2009
Posts: 4,667

Rep: Reputation: 1409Reputation: 1409Reputation: 1409Reputation: 1409Reputation: 1409Reputation: 1409Reputation: 1409Reputation: 1409Reputation: 1409Reputation: 1409
Quote:
Originally Posted by montyw47 View Post
with the problems installing just flash (requires root not su login) I will recommend AGAINST using Fedora in our shop. Gui root vs level 1 login Sounds like the politics on TV with root login = birth control same AGRUMENTS. No one will listen to reason. I just had a popup for signing a package as trusted but w/o root can't do.

Tried the pam/d hack but did NOT work.
What???

Did you see these easy instructions: http://fedoraproject.org/wiki/Flash#...g_Flash_plugin
 
Old 03-14-2012, 09:28 AM   #15
tolwyn
LQ Newbie
 
Registered: Aug 2009
Posts: 1

Rep: Reputation: 0
You know I think it's great that you all warned Hamerins so thoroughly about not logging in as root, however that's not what he asked you for. Once you post the warning you should provide the solution. I don't think he was asking for a lecture on best practices, he was asking for help. Personally I had a quick check I wanted to perform by logging in as root into the gui, and then I was done. I've been administering UNIX/Linux longer than many of you could type. Logging in as root sometimes has a purpose and sometimes you want to do it from a GUI. While I understand the newer security practices, I also know that as a systems engineer sometimes you need to experiment and sometimes the default security is a pain.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] Enable root login from GUI on Fedora 15 networking.dept Fedora 22 06-20-2011 02:47 AM
LXer: Fedora 13 - Xfce spin vs. LXDE spin LXer Syndicated Linux News 0 06-19-2010 08:50 AM
[SOLVED] How to enable auto login as a root cimek Linux - Software 25 04-27-2010 04:17 PM
Fedora Core 3: How do I enable remote root login? xunil321 Fedora - Installation 2 09-16-2005 06:43 AM

LinuxQuestions.org > Forums > Linux Forums > Linux - Desktop

All times are GMT -5. The time now is 10:32 PM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration