Linux - SecurityThis forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I'm a newbie at Linux, and occasionally while trying to configure or customize some aspect of the system I've managed to screw it up so much that I need a friend to bail me out. I have a friend who helped me set up linux, and he has been entrusted with the root password, and occasionally I need him to SSH to my computer to help me out. Is there any way I can give him his own SU account instead? The main reason for that is so that I can tell us apart with the "who", "wall", "top", and "talk" commands when we're both logged in as root; which unfortunetly due to my inexperience (read incompetence) has been necessary all to frequently.
I realize this probably sounds like a dumb reason for making a second superuser, but it is MY computer, and I'd appreciate the ability to distinguish the person at the keyboard from the person on the modem at a glance.
How about changing the root pasword like right now, letting him ssh in as unprivileged user, not giving him root access and running your own Ircd on localhost?..
If you need him to view root-owned files, you can use "install" to copy them to his user area, let him make changes, diff the two files, ask for explanation or a second opinion if necessary, and make those changes yourself.
Some distributions do allow you to automatically set up different groups of users, so that some users have access to almost all root powers without being root.
However, this does not mean that there is any intrinsic support for multiple roots. You should consult your distro's documentation (or post your distro so we can help out).
I agree with unSpawn
Don't give out your root password, ever. It's like giving away the keys to your house, or your bank PIN number, it's bad. Make him a normal acct, give him whatever files he needs, and you can put them were he tells you to.
You have 2 advantages like this:
1. Security, 2. You'll learn a lot more.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.