Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Disable switching to root alternatives
Operating Systems Linux Disable switching to root alternatives Post 302757243 by Tommyk on Thursday 17th of January 2013 08:47:59 AM
Old 01-17-2013
From experience of this situation i would in every case advise to create a command alias for a user to only use sudo for those specific commands and add each command as necessary (obviously dont add commands like su,sh,bash,ksh,visudo,passwd). Much better to have a secure server than give full access to a user and firefight in response to his attempts at gaining root.
 

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Disable Root Console login

After Configuring a brand new netraT1, It appears, the only way you can log in as root is throught the Serial Port (console). I believe there is a file in /etc which can be edited to allow root to access login via other methods eg: telnet, ssh, etc. My Question: Which file contains... (2 Replies)
Discussion started by: SmartJuniorUnix
2 Replies

2. Shell Programming and Scripting

switching between root and a normal user

I am writing a script that has some tasks that must be run as root, then set of tasks to be run as normal user, then again as root. is there a way to switch between users in a script? any other alternatives? thx (3 Replies)
Discussion started by: melanie_pfefer
3 Replies

3. Shell Programming and Scripting

switching user from root to ordinary user

Good day Guys!!! I am currently making a script in AIX, the script runs a SAS job, the owner of the script is the root, but the SAS jobs cannot be run by the root, as it should be run by a user 'sasia'. But inside the script, root creates a logfile, so what I need is just to su to sasia for the... (3 Replies)
Discussion started by: sasia
3 Replies

4. Solaris

Root account - disable expiry

I couldnt find this in any other post - so hoping someone can help out. I want to set password expiry (or rather I have to) for a number of users on my solaris 9 system. I know i can set the following options in the /etc/default/passwd file to do it and then just type a passwd -f <username> to... (6 Replies)
Discussion started by: frustrated1
6 Replies

5. UNIX for Dummies Questions & Answers

Disable root for AIX 5.2

I am able to disable direct root login through telnet. But when I add the rlogin = false into the /etc/security/user file. I am unable to log in as root from ssh. I uncommented the "PermitRootLogin yes" in the sshd_config file. Still can't log in. Can anyone help? (0 Replies)
Discussion started by: james0125
0 Replies

6. Linux

ssh - disable direct root login

Hi Guys.... I am a newbie to unix. I have a requirement. I have a server. I have to configure ssh to disable direct root login and then add a user with sudo access to this server.Then change the ssh port to 22315 and the server should permit the ssh only from my local machine ip.I also have to... (1 Reply)
Discussion started by: mahesh_raghu
1 Replies

7. UNIX for Dummies Questions & Answers

How to disable root login (Not over SSH)?

I have already disabled root login over the ssh by modifying /etc/ssh/sshd_config. But how would i disable root login on a server itself. We have implemented LDAP in our environment and our security guide states that root login must be obtained by first logging into the host using his/her own... (2 Replies)
Discussion started by: pinga123
2 Replies

8. Red Hat

SSL/TLS renegotiation DoS -how to disable? Is it advisable to disable?

Hi all Expertise, I have following issue to solve, SSL / TLS Renegotiation DoS (low) 222.225.12.13 Ease of Exploitation Moderate Port 443/tcp Family Miscellaneous Following is the problem description:------------------ Description The remote service encrypts traffic using TLS / SSL and... (2 Replies)
Discussion started by: manalisharmabe
2 Replies

9. AIX

AIX Disable direct root login problems

I have disabled rlogin for root successfully , but after that i could not login to root from console and could not su to root from other users as it responded as expired account I did not have any admin user but I have managed to recover the situation by accessing rootvg before mounting it, but... (5 Replies)
Discussion started by: majd_ece
5 Replies

10. UNIX for Dummies Questions & Answers

Switching from root to normal user takes me to user's home dir

Whenever i switch from root to another user, by doing su - user, it takes me to home directory of user. This is very annoying as i want to be in same dir to run different commands as root sometimes and sometimes as normal user. How to fix this? (1 Reply)
Discussion started by: syncmaster
1 Replies

LEARN ABOUT CENTOS

yum-aliases

yum-aliases(1)															    yum-aliases(1)

NAME

       yum aliases plugin

SYNOPSIS

       yum [options] alias

DESCRIPTION

       This  plugin changes other commands in yum, much like the alias command in bash. There are a couple of notable differences from shell style
       aliases though. The alias command has three forms:
	* alias
	* alias command
	* alias command result

       The first form lists all current aliases with their final result, the second form looks up a "command" and shows it's final  result  or	an
       error message. The last form creates a new alias.

Explanation of alias to final result conversion
       When  you  type	an aliased command, like "yum --disableexcludes UPT lsu" using the default aliases, the yum-aliases plugin first takes the
       first "command", by skipping over any options, and then looks up the result (in this case "UPT" is converted to "--enablerepo=updates-test-
       ing").  If  there  is  a  match,  then  it  will  replace the aliased "command" in the argument list and try again (again skipping over any
       options). By convention, in the default aliases list, alias "commands" that are in all CAPS only add options so you  can  join  together  a
       chain of them before any real command or aliased command.

       There  are two things that can alter the above, if you have the "recursive" configuration option set to off then alias processing will stop
       after the first alias to command substitution. Also, like in shell aliases, if the result starts with  then alias processing will stop.

EXAMPLES

       To create a new alias command called "rm" which does the same thing as the command "remove" use:

	      yum alias rm remove

       To always add the --skip-broken --disableexcludes=all --obsoletes options to the update command (but leaving the upgrade option alone), you
       could use:

	      yum alias update update	--skip-broken --disableexcludes=all --obsoletes

       To override the default "up" alias to use the above update command, and never ask for confirmation, you could use:

	      yum alias up update -y

AUTHORS

	      James Antill <james@and.org>

SEE ALSO

       yum-utils(1) yum(1)

James Antill							  31 March 2008 						    yum-aliases(1)
All times are GMT -4. The time now is 11:08 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy