Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here. |
Notices |
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
Are you new to LinuxQuestions.org? Visit the following links:
Site Howto |
Site FAQ |
Sitemap |
Register Now
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
|
 |
07-22-2007, 06:01 PM
|
#1
|
Member
Registered: Aug 2003
Posts: 199
Rep:
|
Giving a user root permission via the root group
I've just install Red Hat Linux 5 and now I want to give myself root permissions with them having to sign-on as root. I've placed my userid in the root group. However, when ever I try to perform a command that requires root permission I'm told that only root can perform this command.
I have a second question regarding mount of a network share? I want to mount network drives at the time of user sign-on. I've placed the mount command in the ".bash_profile" and I still get the message that only root can perform a mount.
How do resovle the two problems above?
Thanks
|
|
|
07-22-2007, 06:12 PM
|
#2
|
Senior Member
Registered: Feb 2003
Distribution: Slackware
Posts: 4,113
Rep: 
|
You should really search the web for information on why Unix permissions are as they are and how what you're trying to do essentially undercuts them in a very bad way. As far as the 'root' group, you're still not UID root, so are getting these messages. A more proper way to do it would be to selectively give yourself permissions like 'disk' or what have you.
Incidentally, why such an old release? You should upgrade for both security and comfort.
|
|
|
07-22-2007, 07:04 PM
|
#3
|
LQ Guru
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733
|
Even making yourself a member of the disk group isn't a good idea. I will give you full access to devices such as /dev/hda. There is a wheel group that you can make yourself a member of and then use "visudo" to allow wheel group members to use sudo.
|
|
|
07-22-2007, 08:18 PM
|
#4
|
Member
Registered: Aug 2003
Posts: 199
Original Poster
Rep:
|
My approach here is to apply group level security in the same way things are on the Mainframe and in a Windows environment. However, I understand your point perfectly.
My other question is about mounting network shares when a user signs-on. As I said eariler I've placed the mount in the ".bash_profile" and when I sign-on the get the permission denied for the mount. Surely I can assign network drive by users to be mounted.
Thanks
|
|
|
07-22-2007, 08:32 PM
|
#5
|
Senior Member
Registered: Feb 2003
Distribution: Slackware
Posts: 4,113
Rep: 
|
May need to put it in /etc/fstab and give it the 'user' option.
|
|
|
07-22-2007, 09:06 PM
|
#6
|
Member
Registered: Aug 2003
Posts: 199
Original Poster
Rep:
|
I admit that I'm new to the Linux environment. By putting the mount in "fstab" however, then do I make the mount available to other users who sign-on using there own userid's and passwords?
Thanks
|
|
|
07-23-2007, 12:56 AM
|
#7
|
LQ Guru
Registered: Aug 2001
Location: Fargo, ND
Distribution: SuSE AMD64
Posts: 15,733
|
There is also a pam_mount module you might want to look at.
With an /etc/fstab entry;
If the permissions of the filesystem are exclusive for that user, then even if another use can mount it, they can't use it at all. If all of the users are on the same network device, you could have the /home directory mounted on the network device at boot time, containing user directories.
Also, look at "man autofs" and "man 5 auto.master" documentation.
Last edited by jschiwal; 07-24-2007 at 01:50 AM.
|
|
|
All times are GMT -5. The time now is 11:25 AM.
|
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
|
Latest Threads
LQ News
|
|