On Tue, 8 Feb 2000, Iwan van der Kleyn wrote:
> A few things have evaded me while grasping the major concepts of Linux
> security (must be several years of miseducation under NT :-)
> 1) it it possible to change the username of root? Seems to be more safe when
> under a dictionary attack
yes but relatively pointless, root can't login remotly and you can just
'su -' it doesn't need a "name" just a uid (assumed as 0, in this usage),
so you have to change both the name and uid, to change the uid you must
hack many programs that test the uid. But yeah it's doable
> 2) I've implemented NIS for "domain-authentication". Would it be possible to
> implement something like a "domain-root" account? Something similar to the
> NT "Domain Administrator" which is automatically Administrator (super-user)
> on a member of an NT-domain.
Yes and no, they need tobe gid 0, and you'll need to alter permissions all
over the place so they're group read-write.
> Thanks,
> Iwan
>
--
MandrakeSoft http://www.mandrakesoft.com/
--Axalon
