Re: my user on my box!
Jon == Jon Björklund [EMAIL PROTECTED] writes: Jon What I want is to get my user named ceed to be as powerful as Jon root but at the same time it shouldn't be root. There are several ways of doing that. `secure-su' lets you set things up so that certain users can `su' to become certain other users, and bypass the password. It's convienient to allow some folks to become `webmaster' for instance. `super' lets you set up certain commands to be run as another user. It's pretty easy to do; once you RTFM you'll know as much as I do about it, so I won't go into details. `sudo' is another way; it is perhaps the most popular method of allowing users to run commands as root or as other users. Scripts may be set `SUID' two different ways. Perl programs may use `suidperl', and shell scripts can securely be run SUID using `suidexec', which may be found in the `suidmanager' package. -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: my user on my box!
Marcus == Marcus Brinkmann [EMAIL PROTECTED] writes: Marcus If you want to give ceed access to floppy, cd, sound and Marcus other, add ceed at the end of the appropriate lines in Marcus your /etc/group file. This file controls the access for Marcus common files and devices. `adduser ceed groupname' will do that for you. -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: my user on my box!
On Sun, 28 Dec 1997, Jon Björklund wrote: What I want is to get my user named ceed to be as powerful as root but at the same time it shouldn't be root. Is there a way of fixing this?? Well, you can use sudo, which lets normal users to superuser tasks. And I do not want to go around su:ing all my day. Really, except for setting up the system and maintaining things, you shouldn't have to be root all the time, except to shutdown the system... Will -- | [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] | | http://www.cis.udel.edu/~lowe/ | -- |The problem with computers: | || | rivendell[501] [~] love me | | bash: love: command not found | | rivendell[502] [~] hug me| | bash: hug: command not found | -- -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: my user on my box!
Not to mention it is EXTREMELY dangerous to your system since root can wipe out your system. Root cannot log in remotely due to security restraints... but if you give normal usernames root capabilities... they can log in remote thus creating a security breach. It is better to leave root and the normal user separate. Keith On Sun, 28 Dec 1997, Will Lowe wrote: On Sun, 28 Dec 1997, Jon Björklund wrote: What I want is to get my user named ceed to be as powerful as root but at the same time it shouldn't be root. Is there a way of fixing this?? Well, you can use sudo, which lets normal users to superuser tasks. And I do not want to go around su:ing all my day. Really, except for setting up the system and maintaining things, you shouldn't have to be root all the time, except to shutdown the system... Will -- | [EMAIL PROTECTED] [EMAIL PROTECTED] [EMAIL PROTECTED] | | http://www.cis.udel.edu/~lowe/ | -- |The problem with computers: | || | rivendell[501] [~] love me | | bash: love: command not found | | rivendell[502] [~] hug me| | bash: hug: command not found | -- -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] . -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- E-Mail: [EMAIL PROTECTED] http://psychobabble.dyn.ml.org ICQ: #5386440 __ _ / / (_)__ __ __ / /__/ / _ \/ // /\ \/ / . . . t h e c h o i c e o f a //_/_//_/\_,_/ /_/\_\ G N U g e n e r a t i o n . . . -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .
Re: my user on my box!
On Sun, Dec 28, 1997 at 10:14:43AM -0800, Jon Björklund wrote: Hi there guys! I am using Debian 1.3.1 and finds it a perfekt linuxdistribution. But there is one _very_ BiG problem in all unices I have tested, and that is the users and root. What I want is to get my user named ceed to be as powerful as root but at the same time it shouldn't be root. Is there a way of fixing this?? And I do not want to go around su:ing all my day. As other mentioned on this list, this is no problem or bug, but a feature. Their should be absolutly no reason to have root access all the time (do you know one?) I assume you have a stand alone machine, and you are the only user. Then I would recommend you to keep the first console for root. Then you can login as ceed on other consoles, and switch back to your root console via ALT-F1. This is what I do, and you will experience, that you don't need too much root access. If you want to give ceed access to floppy, cd, sound and other, add ceed at the end of the appropriate lines in your /etc/group file. This file controls the access for common files and devices. And finally can you pleaze give me a small description of what each user in the original /etc/passwd is! This users are no real users, this means, you can't login as, for example news (they have an asterisk * as password). They are for system maintenance, and special system programs, as daemons, can run as news, for example, so they don't have to run as root for special tasks (the news daemon only needs access to news specific files, and not to the usr directory, for example). This somewhat complicated mechanism does protect the system against you and you against the system ;) Thank you, Marcus -- Rhubarb is no Egyptian god. Debian GNU/Linux Marcus Brinkmann http://www.debian.org [EMAIL PROTECTED] http://homepage.ruhr-uni-bochum.de/Marcus.Brinkmann/ PGP Key ID 36E7CD09 -- TO UNSUBSCRIBE FROM THIS MAILING LIST: e-mail the word unsubscribe to [EMAIL PROTECTED] . Trouble? e-mail to [EMAIL PROTECTED] .