Command SU
1. Well command su is used to switch user i used this command as a normal user to switch on to root and it prompted for password, I entered it and then worked with root prompt, but my question is if i am gonna know the root password then i can log-in as root and do all stuffs so why linux has this unsecured command or if my perception is wrong then in which place this SU command can be used???????
2. I want to learn about /proc filesystem please get me some links to have an insight knowledge about it. |
Quote:
Quote:
http://linuxgazette.net/issue46/fink.html http://www.linuxjournal.com/article/8381 Try google.com for linux proc filesystem if you need more info. Jim. |
Quote:
If you log in as a standard account, there is a limit to what you can break. When you need to run a command as root you can su to root. Additionally if you run su I would suggest you use: Code:
su - Code:
PATH=.:/bin:/sbin:/usr/bin:/usr/sbin:~ This could increase the powers that the attacker has. |
Why are you saying that "su" is unsecured? You can't get root privileges without the password---regardless of whether you use su.
/proc is a virtual directory that allows you to see all the data structures maintained by the kernel. Some of the entries are self-explanatory--others will make no sense unless you know how the kernel works. |
@reiko007
About su and sudo Not all users are allowed to use these commands to gain root priviledges. This is explained in the file /etc/sudoers You probably have just one user on your system (yourself). Most installations grant the first user sudo root priviledges, others probably will not be allowed, unless you explicitly allow it when you create the new user. On my distro, only users belonging to the group admin are allowed to su to root. So, when I create new accounts for users I do not wish to grant root access to, I make sure they are not members of the group admin. Then they can't do it :) Hope this helps |
On my system any user can use su--not necesary to be in the admin group.
I have never seen it otherwise...was your distro like this out of the box, or did you modify? |
It's kubuntu 6.06.1, out of the box, security not modified.
Users not in the admin group can su to users other than root, but only if they know that user's password Users not in the admin group cannot su root Users not in the admin group cannot sudo File /etc/sudoers Code:
# Code:
sutest@vaio:/home/sutest$ groups |
Well thanks a lot!!!!! but now i have encountered some issues that when i sudo with my password
the authentication stays only for a few minutes i want to change the time duration which file do i have to edit? |
As usual, the man command is useful here. Try :
man sudo man sudoers |
All times are GMT -5. The time now is 07:10 PM. |