[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 222
  • Last Modified:

Linux OS

I need to know about the user "root"
is he only a super user or also can be a group, and other user can be part of root group,

Thanks
0
usmbay
Asked:
usmbay
1 Solution
 
redcelltechCommented:
The root user is considered the superuser of any Linux/Unix operating sytem. There is also a group called root or in the BSD variants this group may be called wheel. Users placed in this group assume root level privileges. You can add users to this group by editing the /etc/group file. This is done as follows

root:x:0:root,adduserhere,andhere,andhere

Care should be taken to any account assigned root level privileges, strong passwords should always be used, but especially when dealing with root level accounts.

Hope this helps  
0
 
TintinCommented:
Minor correction to the very good summary that redceltech gave:

"Users placed in this group assume root level privileges."

should read

"Users placed in this group assume *some* root level privileges."

Being in the root group does not give you all the rights as the root user.
0
 
redcelltechCommented:
Agreed, nice pick up!
0
Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

 
usmbayAuthor Commented:
so I can edit group file to remove user from this group right??
0
 
redcelltechCommented:
yes.
0
 
usmbayAuthor Commented:
I found this record in the file

username:x:506

what's x and 506 mean,
0
 
redcelltechCommented:
One other thing to note about the root group. Users with this membership can su or switch user to the root account, that is if they know the password.
0
 
redcelltechCommented:
506 is the group number. Check the group file and search for 506 (/506 in vi), most likely it is a group created when the user was added. The group number to monitor is 0. x is the password column.
0
 
redcelltechCommented:
x is shown if shadow passwords are in use
0
 
usmbayAuthor Commented:
Thanks that was clear
0
 
robertfwoodsCommented:
I agree with redcelltech strong passwords are a requirement.

Read about Robert Moore. Google "interview Robert Moore" or:
https://informationweek.com/news/showArticle.jhtml?articleID=202101781 

Four critical points:
Default passwords
Monitor the logs
Intrusion Detection
Access control lists

6,000,000 computers scanned in 5 months. Was yours one?
0

Featured Post

Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now