03-08-2002
First of all the su command can/must be used by previeleged users ie. root. Frequent change of password must be done to obtain maximum security between the server site and client side.
one way to do it is to add a script to either /etc/profile or the particular user's .profile that tests to restrict the user. Something like this in /etc/profile will work:
IAM=`who am i | cut -d" " -f1`
COUNT=`w | cut -d" " -f1 | grep "^$IAM$" | wc -l`
[ $COUNT -gt 1 ] && exit 0
Not sure whther that command works or not but one thing for suggestion. Do not disable the password. Changing the password will do (just an advise). In case of problem then your user might face some problem.
10 More Discussions You Might Find Interesting
1. SuSE
When I try to log on as root now all it does is load YaST. When I used to log on as root it would have a desktop and all...what has happened? Thanks in advance. (10 Replies)
Discussion started by: CTroxtell21
10 Replies
2. UNIX for Dummies Questions & Answers
All,
I want to run a non-root script as the root user with non-root environment variables with crontab. The non-root user would have environment variables for database access such as Oracle or Sybase. The root user does not have the Oracle or Sybase enviroment variables. I thought you could do... (2 Replies)
Discussion started by: bubba112557
2 Replies
3. UNIX for Advanced & Expert Users
Hi everybody, ]
I would like to ask just simpe and short question. I am using freeBSD 6.0 and Debian Sarge.
From Debian console I can log as root using ssh to bsd mashine but not vice versa.
When I say in bsd console su I got sorry output, it does not allow me to su to root when I am logged... (5 Replies)
Discussion started by: 100days
5 Replies
4. AIX
Hi, yesterday, I changed root's shell in /etc/passwd, cause a mistake then I can not log in root account (can't find correct shell). I attempted to log in single-mode, however, it prompted for single-mode's password then I type root's password but still can not log in.
I'm using AIX 5L version 5.2... (2 Replies)
Discussion started by: neikel
2 Replies
5. Solaris
I would like to know how to prevent users connecting to a server using SSH as root.
I would still like them to be able to login with their username and then change to su.
But I would like to prevent them logging in directly as root.
I have searched the forum and read that I should set... (3 Replies)
Discussion started by: Sepia
3 Replies
6. HP-UX
when i am trying to login through root i am getting following error
Last successful login for root: Tue Feb 3 16:44:40 IST-5:30 2009 on pts/tc
Last unsuccessful login for root: Tue Feb 3 16:41:01 IST-5:30 2009 on pts/tc
Please wait...checking for disk quotas
crt0: ERROR couldn't open... (6 Replies)
Discussion started by: mnmca
6 Replies
7. Post Here to Contact Site Administrators and Moderators
Hi Everyone. First, I want to thank all of you for letting me participate in this great group.
I am having a bit of a problem.
After I get an email from a responder, I login to make my reply.
In the mean time I get another response by email from another member, I go to reply to them and I... (6 Replies)
Discussion started by: Ccccc
6 Replies
8. UNIX for Dummies Questions & Answers
I have created a linux machine and installed some softwares on it with root user privileges . I used to login with root user credentials for doing the various task.
Later i have realise that this is not the best practice to follow and there should be a new user with less privileges to be created... (1 Reply)
Discussion started by: pinga123
1 Replies
9. Solaris
Hi All
After downloading ZFS documentation from oracle site, I am able to successfully migrate UFS root FS without zones to ZFS root FS. But in case of UFS root file system with zones , I am successfully able to migrate global zone to zfs root file system but zone are still in UFS root file... (2 Replies)
Discussion started by: sb200
2 Replies
10. Linux
When unlocking a Linux server's console there's no event indicating successful logging
Is there a way I can fix this ?
I have the following in my rsyslog.conf
auth.info /var/log/secure
authpriv.info /var/log/secure (1 Reply)
Discussion started by: walterthered
1 Replies
dxchpwd(1X) dxchpwd(1X)
NAME
dxchpwd - Create or change password program
SYNOPSIS
dxchpwd
dxchpwd -r | -l
dxchpwd [-r | -l] -q
dxchpwd [-r | -l] -u username
OPTIONS
If dxchpwd is invoked without any options, it is assumed that the current user's password is to be changed. The following options are also
accepted: Tells dxchpwd that the password change is to be done for a Local user. This can be combined with the -u and -q options. Tells
dxchpwd that the password change is to be done for a NIS user. This can only be done from a NIS master and can be combined with the -u and
-q options. Tells dxchpwd to query the user for the user name of the account whose password is to be changed. Tells dxchpwd to change
this user's password.
DESCRIPTION
The dxchpwd command lets you change your password. When you invoke the dxchpwd command, the program prompts you for the old password and
then for the new password. Next, the program asks you for the new password again, to verify that you have typed it correctly. Note that
the passwords are not displayed on the screen.
Your new password must meet the length requirements specified by the authorization database for the user whose password is being changed.
If your system is running with enhanced security, you may have to choose a password from a list of randomly generated passwords or you may
be prohibited from changing your password until its minimum lifetime has expired, as specified in the authorization database.
EXAMPLES
The following example requests that the password be changed for user smith: dxchpwd -u smith
FILES
Password file Protected Password Database dxchpwd executable
SEE ALSO
X(1X), xdm(1X), passwd(1)
dxchpwd(1X)