Expiring Today—Celebrate National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Prevent logging into Linux Ubuntu 12.04 without password

Posted on 2013-05-12
9
Medium Priority
?
574 Views
Last Modified: 2013-05-24
I have just set-up a new web server using Ubuntu 12.04 and configured it to allow remote connections so that I will be able to configure the machine remotely.  One thing that I have noticed is that for some reason, I am able to connect to the console session of the machine without a password.  This is not good.  If I can connect without a password, that means someone else can.

What do I need to change to make sure that users cannot login to the Linux Ubuntu 12.04 web server without using a password?

Thanks.
0
Comment
Question by:DanielAttard
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
9 Comments
 
LVL 21

Expert Comment

by:Mazdajai
ID: 39160386
How to connect to session? What account?
0
 

Author Comment

by:DanielAttard
ID: 39160395
I changed the security setting to confirm each access to the machine.  Without this setting checked off, I seemed to be able to connect to the console session of the machine without specifying any account or password.
0
 
LVL 21

Expert Comment

by:Mazdajai
ID: 39164793
Sorry, I am not following what you mean by remote connections - do you mean remote desktop into the server without a password? Can you post a screenshot?
0
What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

 

Author Comment

by:DanielAttard
ID: 39164960
What I was talking about were the Desktop Sharing Preferences.  I did not realize the security implications of allowing others to view the desktop, but checking the box to "Confirm each access to this machine".  Without that checkbox, I was permitting unrestricted access to the box which was obviously a bad thing.
0
 
LVL 21

Expert Comment

by:Mazdajai
ID: 39165519
Under Remote Desktop Preferences, have you set a password under the security section?

Is there a reason you want to use remote desktop instead of ssh?
0
 

Author Comment

by:DanielAttard
ID: 39165708
The only reason I am using remote desktop is because I am not comfortable enough to do everything I need to do from the command line with ssh.   I want to be able to use the GUI.
0
 
LVL 30

Accepted Solution

by:
serialband earned 2000 total points
ID: 39165843
Just a note:

I believe that the Ubuntu Remote Desktop is plain old VNC which is not encrypted.  It shouldn't be used over the general internet because the password is sent in plain text.  You should only use the VNC tools on a local subnet you trust.  There are other ways to connect that are safer.  Use ssh with -X (capital X) to forward X11 and you can start your GUI tools remotely over an encrypted channel.  Or install nomachine, which uses ssh, & use the nxclient to connect.

It's good to have the GUI at the beginning, but don't rely it on it for everything.  It's good for the one off setting when you're a beginner.  There's a lot of things that can be more quickly done once you learn to script them on the command line, especially if you have a lot of systems to manage.
0
 
LVL 21

Expert Comment

by:Mazdajai
ID: 39166872
Can you post your remote desktop setting?
0
 
LVL 21

Expert Comment

by:Mazdajai
ID: 39166876
It sounds like you did not have password set on the remote control / view section. Need to check on my lab machine.
0

Featured Post

WordPress Tutorial 1: Installation & Setup

WordPress is a very popular option for running your web site and can be used to get your content online quickly for the world to see. This guide will walk you through installing the WordPress server software and the initial setup process.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The purpose of this article is to demonstrate how we can use conditional statements using Python.
Google Drive is extremely cheap offsite storage, and it's even possible to get extra storage for free for two years.  You can use the free account 15GB, and if you have an Android device..when you install Google Drive for the first time it will give…
Learn how to get help with Linux/Unix bash shell commands. Use help to read help documents for built in bash shell commands.: Use man to interface with the online reference manuals for shell commands.: Use man to search man pages for unknown command…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
Suggested Courses

730 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question