You are not logged in.
Pages: 1
As title...
Or, alternatively, how I can create an user with the same privilege as root (i.e., a user that can do EVERYTHING) renaming it as I like?
Offline
Afaik you can't have multiple root users. The root privilege is bound to the user id 0 - and users ids must be unique. You *could* change the root username by modifying /etc/passwd and /etc/shadow or simply using usermod - however, I strongly discourage of doing this, it will most likely break your system because alot of scripts and maybe even binary programs rely on root actually having the username root.
But you might want to consider some more replies, because my knowledge on this subject is rather plainly.
Last edited by daba (2010-03-26 10:32:49)
Offline
Unix-like systems do support more than one user with id 0, NetBSD for example, which comes with a "Toor" account. I would think you could create an alternative user with id 0 and disable the original root user, but to me, that is just security by obscurity.
Arch Linux = Teh Happy!
Offline
Set up sudo, ???, profit!
Because running everything with root privs is a really really really bad idea.
Last edited by Mr.Elendig (2010-03-26 10:50:43)
Evil #archlinux@libera.chat channel op and general support dude.
. files on github, Screenshots, Random pics and the rest
Offline
Why do you think you need a user with the same privileges as root? If you think about it carefully, you will find that you don't IMO.
Are you familiar with su/sudo?
Offline
sudo, if properly configured, will allow you to do EVERYTHING you want.
AMD Sempron ™ 2600+ 1.6GHz - 512MB of RAM - NVidia FX5200 ( 128MB )
Offline
Sounds like you want to have X starting as root as well... All possible, but the quicker way would be to to a rm -r /* immediately after successful install
never trust a toad...
::Grateful ArchDonor::
::Grateful Wikipedia Donor::
Offline
sudo, if properly configured, will allow you to do EVERYTHING you want.
Well, isn't that root, just disguised ?
Anyhow, you can have more then one user with ID 0, any user regular name, any homedir and any shell.
Mektub
Follow me on twitter: https://twitter.com/johnbina
Offline
Melonie wrote:sudo, if properly configured, will allow you to do EVERYTHING you want.
Well, isn't that root, just disguised ?
Nope, because it will only run stuff as root when explicitly told so.
Evil #archlinux@libera.chat channel op and general support dude.
. files on github, Screenshots, Random pics and the rest
Offline
Sounds like you want to have X starting as root as well... All possible, but the quicker way would be to to a rm -r /* immediately after successful install
Tread carefully - this guy may not know that's a joke. Also he may not know what rm does, so... What I'm trying to say is don't be a dick, even by accident. Telling people to rm -r / is a very bad idea, because they might actually go and do it, and then it's your fault.
Offline
toad wrote:Sounds like you want to have X starting as root as well... All possible, but the quicker way would be to to a rm -r /* immediately after successful install
Tread carefully - this guy may not know that's a joke. Also he may not know what rm does, so... What I'm trying to say is don't be a dick, even by accident. Telling people to rm -r / is a very bad idea, because they might actually go and do it, and then it's your fault.
Yeah, even when considered a joke, it was a bad one ...
Offline
This is a popular trick in Windows. People often remove the "administrator" username or even better, leave it there and give it no priviliges so it works as a honey pot for someone trying to break into your system.
I've run into a couple cases when sudo did not work correctly on Arch and I had to fall back on su so I'm not sure deleting root and only using sudo is a good solution for us.
Offline
Idiots, go run rm -rf / in a terminal and you'll notice that nothing happens.
Offline
Idiots, go run rm -rf / in a terminal and you'll notice that nothing happens.
That's not quite what toad said ..
1. It was rm -r /*, not rm -rf /.
2. He was talking about a fresh install, which means you would run it as root, not a regular user.
Last edited by Melonie (2010-03-26 14:51:34)
AMD Sempron ™ 2600+ 1.6GHz - 512MB of RAM - NVidia FX5200 ( 128MB )
Offline
Idiots, go run rm -rf / in a terminal and you'll notice that nothing happens.
I wouldn't exactly consider people who're concerned about the safety of their systems to be idiots. rm -rf / (or rm -r /* or whatever) is a dangerous command to run, period, whether or not recent versions have a safeguard around it.
It's like saying "Newer guns have safeties. If you don't put a gun to your head and pull the trigger, you're an idiot."
In any case, back on topic, as other posters have said I'd recommend against renaming root or making another user with root privileges. It's more than likely the wrong solution to whatever problem you're trying to solve.
Offline
If you are afraid of people loggin in with the root account simply bang his password in /etc/shadow and the account will no longer be able to login. You should be sure that you have sudo configured correcly though when doing this, because you might lock yourself out of root access to your machine by doing this if not so.
Last edited by daba (2010-03-26 15:29:47)
Offline
Idiots, go run rm -rf / in a terminal and you'll notice that nothing happens.
Irrelevant. See Cerebral's comment.
Offline
Oh well, I shouldn't have used such a harsh tone. Not that you needed to either =p
I didn't notice that he used /*, which would do something, although when pesantoid answered he didn't have the wildcard.
And I bet a new installation is fairly up to date, but the random newbie that browses this might always always run it (although that'll teach them to not run random commands)
Last edited by hatten (2010-03-26 20:25:16)
Offline
As suggested the idea probably has it "roots" in Windows. Difference though is that Administrator also by default has remote permissions, but you don't really need to do more than to strip Administrator's remote permissions (if someone is allowed to access the server then about everything else is of no use... or maybe that gun Cerebral was talking about) and add another account to the administrator group and give it remote permissions.
As long as root isn't allowed to be accessed by ssh or similar there's no point in being obscure beyond reason. If that gun is put to your head you better don't have data more valuable than your life.
Offline
Pages: 1