|
local root can access nis users??¿?¿
I think I have a problem, can advice me?
I have a sun server that autentifies users in linux boxes. The server uses NIS to make this. I noticed that if I logon as a root in a linux client (not at NIS user), I can access to all users of the nis. making a simple su - <NIS user> I don't know if this is normal or not but can be dangerous, because some users has root pass in some linux machines and can access to other user accounts…. Example: Imagine I’m working in win inside a domain, and I login as a local administrator of the machine, I CANOT access to users from the domain... I hope you understand the problem. So I want to control like in win. Is possible?? Is this normal under linux this problem?? Thx for your advice Regards |
What you describe (local root having access to all user accounts on the local machine - even if the user authentication is provided by NIS) is normal under Linux.
Where this security model may cause problems, root access is closely controlled by allowing only limited administration privileges to lesser administrative users through use of tools such as sudo. |
| All times are GMT -5. The time now is 04:08 PM. |