The UNIX and Linux Forums  


Go Back   The UNIX and Linux Forums > Special Forums > UNIX Desktop for Dummies Questions & Answers
Too many users with root password Too many users with root password
.
grep unix.com with google

Forums Register Blog Man Pages Forum RulesLinksAlbums FAQ Our Members Calendar Search Today's Posts Mark Forums Read


UNIX Desktop for Dummies Questions & Answers Discuss UNIX and Linux user interfaces like GNOME, KDE, CDE, and Open Office here. All UNIX and Linux Newbies Welcome !!

Reply
English Japanese Spanish French German Portuguese Italian Powered by Powered by Google
 
Thread Tools Search this Thread Rate Thread Display Modes
  #1 (permalink)  
Old 10-16-2009
Registered User
  

Join Date: Oct 2008
Posts: 34
Too many users with root password
Hi there,

I'm working with a Linux server and now I can get a daily Logwatch mail ... my question is:since there are too many users with root password (...in my opinion... ) how could I prevent to delete information about "su" log?

Thanks in advance,

GB
  #2 (permalink)  
Old 10-16-2009
TonyFullerMalv's Avatar
Registered User
  

Join Date: Sep 2008
Location: Malvern, Worcs. U.K.
Posts: 933
Or you could limit the use of the su command by setting up a Unix group of folk who are allowed access to the root account and limit the su command to being only run by members of that group and root itself and not be world executable or world readable? (Traditionally referred to as the wheel group ).
Make sure you catch all versions of su in your installation and ensure folk cannot SSH in as root.
  #3 (permalink)  
Old 10-16-2009
Registered User
  

Join Date: Jul 2009
Posts: 156
Or you can use sudo and limit which commands users can run as root. This also forces people to log in with a non-privileged account first.
  #4 (permalink)  
Old 10-16-2009
Resident BOFH
  

Join Date: Dec 2007
Posts: 459
if the people with root access cannot be trusted then the removal of the su log is the least of your worries.

but... one thing you could do is setup a remote syslog server with limited access and configure all of the UNIX clients to log to that server. This would prevent the logs from being tampered with. Make sure the same people with root cannot access that server. This would only be part of the solution but might prove very useful.
Sponsored Links
Reply

Bookmarks

« Automatic reload of Thunar | OpenSSH »
Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes Rate This Thread
Linear Mode Linear Mode
Rate This Thread:

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

More UNIX and Linux Forum Topics You Might Find Helpful
Thread Thread Starter Forum Replies Last Post
Solaris 8 - Asks for current root password when trying to change root password. tferrazz SUN Solaris 8 04-07-2009 03:28 PM
how to change root password using shell script with standard password kurva Shell Programming and Scripting 2 02-25-2009 02:35 AM
I need it to prompt me for a root password, so I don't have to log as root lunchtime UNIX for Dummies Questions & Answers 2 06-25-2007 04:21 PM
how to access root priveliges if root password is lost wojtyla Linux 1 02-18-2005 06:24 AM
Lost root password / Can't login as root Perderabo Answers to Frequently Asked Questions 0 06-22-2004 08:40 PM



All times are GMT -4. The time now is 02:21 PM.

The UNIX and Linux Forums - Learn UNIX and UNIX Commands RSS Feeds - Contact Us - The UNIX and Linux Forums - Learn UNIX and UNIX Commands - Archive - Top

Powered by: vBulletin, Copyright ©2000 - 2006, Jelsoft Enterprises Limited. Language Translations Powered by .
vBCredits v1.4 Copyright ©2007 - 2008, PixelFX Studios
The UNIX and Linux Forums Content Copyright ©1993-2009. All Rights Reserved.Ad Management by RedTyger

Content Relevant URLs by vBSEO 3.2.0