?
Solved

Muiltiple UID 0 - pros/cons and other unix superuser questions

Posted on 2008-10-07
7
Medium Priority
?
684 Views
Last Modified: 2013-12-06
I have seen suggestions that there be two UID 0 users, in case someone tries to log into root too many times and the account gets disabled, or to be able to change the shell and other environment variables while keeping root pristine.

I've also seen suggestions that there should NEVER be another UID 0 user, and that sudo should be used.

At this point I want to be able to log in as a superuser, use ksh, and have a home directory other than /.

I've noted that if I have another superuser created, whenever I change the password root's password will also be changed. Is that correct?

What should I do?
0
Comment
Question by:crcevans
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 40

Accepted Solution

by:
omarfarid earned 500 total points
ID: 22661518
Well creating another user with user id 0 (as root user id) is a lazy way of giving some one root priv. It would be better to use sudo for that purpose. It is not as on or off to have sh as the login shell for root (but you should be aware of security risks in changing it). Regarding home dir, I am not sure if changing the home dir for root in /etc/passwd will cause any problem, but it is simple to create an alias that will change dir when you login and set HOME env. variable for you.
0
 
LVL 14

Expert Comment

by:sjm_ee
ID: 22664412
Q I've noted that if I have another superuser created, whenever I change the password root's password will also be changed. Is that correct?

A No. Separate entries in the shadow password file.
0
 

Author Comment

by:crcevans
ID: 22669044
Omar, do you camp on EE during lunch, or what? You've touched just about all of my Unix questions...lol. Thanks for responding.

"home dir, I am not sure if changing the home dir for root in /etc/passwd will cause any problem, but it is simple to create an alias that will change dir when you login and set HOME env. variable for you."

The reason I want to change the home folder is that sendmail won't use my .forward until the folder it resides in doesn't have group wx permissions, so the alias won't help me. Any other input?
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 
LVL 40

Expert Comment

by:omarfarid
ID: 22669444
In EE you can set zones to send you mail alerts for new questions, so I keep an eye on my mail box and when ever I get time I open new questions and try to answer :)

But the root home dir does not have wx perm by default for group.

what is the output of

ls -ld /
0
 

Author Comment

by:crcevans
ID: 22669484
drwxrwxr-x  21 root       sys           8192 Oct  1 15:22 /
0
 
LVL 40

Expert Comment

by:omarfarid
ID: 22669732
Why do you need rwx for the group on / dir? If not needed then change it to r-x
0
 
LVL 48

Expert Comment

by:Tintin
ID: 22682467
You can set the root user's home directory to any directory, but it is recommended that the directory is in the root filesystem.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In tuning file systems on the Solaris Operating System, changing some parameters of a file system usually destroys the data on it. For instance, changing the cache segment block size in the volume of a T3 requires that you delete the existing volu…
Introduction Regular patching is part of a system administrator's tasks. However, many patches require that the system be in single-user mode before they can be installed. A cluster patch in particular can take quite a while to apply if the machine…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Suggested Courses
Course of the Month13 days, 21 hours left to enroll

801 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question