Login or Register to Ask a Question and Join Our Community


UNIX for Dummies Questions & Answers

root maxlogins

 
Thread Tools Search this Thread
Top Forums UNIX for Dummies Questions & Answers root maxlogins
# 1  
Old 02-29-2012
root maxlogins
OS: Linux version 2.6.32-33-server - Ubuntu 4.4.3-4ubuntu5

limits.conf:root - maxlogins 2

doesn't work here on this machine. any idea what can be the reason?

is it right to limit every user to '2' with: * hard maxlogins 2 ?

---------- Post updated 29-02-12 at 09:37 AM ---------- Previous update was 28-02-12 at 10:50 AM ----------

additionally the 'maxsyslogins' option doesn't work for root.
please help - I want to restrict access to max of 2 users at a time...
Last edited by daWonderer; 02-28-2012 at 06:06 AM..
# 2  
Old 02-29-2012
Truly I find that stupid...
If you were to limit root access (very good, we all do that...) start by allowing root connection to console only ( Yes only one! ), then users entitled to use root account would have to use su, or sudo...
You can then monitor who did su or sudo in their respective logs...
For "How to", there are plenty of threads on the subject on unix.com, do a bit of search!
This User Gave Thanks to vbe For This Post:
daWonderer
# 3  
Old 02-29-2012
Quote:
Originally Posted by vbe
If you were to limit root access (very good, we all do that...) start by allowing root connection to console only ( Yes only one! )
I thought about this but then I imagined a situation when e.g. tty1 freezes with root logged in.
I don't want to restart a system if it isn't really necessary - that's why I want to log in 2 times as root.

Quote:
For "How to", there are plenty of threads on the subject on unix.com, do a bit of search!
I've read about it but it doesn't work like expected:

- root can login as much as he/she like although I've inserted the line showed here in 1st post
- maxsyslogins doesn't take root logins in effect

in manual there is explained:
To set a limit for the root user, this field must contain the literal username root.
maybe my english isn't good enough to convert the meaning into the right config line...
# 4  
Old 02-29-2012
First question is do you have a console attached?
then it is not playing with maxlogins but on unix system you have a file called securetty (look at the man pages...) which when exist says where root is allowed to connect, here e.g. on an HP I administer:
Code:
ran:/opt/HDVM/bin/logs $ more /etc/securetty
console
ran:/opt/HDVM/bin/logs $ ll /etc/securetty  
-r--r--r--   1 root       sys              8 Oct  3  2001 /etc/securetty

Now except on the console you cannot connect as root, you can only su...

When do you really need to log in as root? when the machine has crashed or in single user (no more network then...) and so you are at the console...
# 5  
Old 03-01-2012
[QUOTE=vbe;302603148]First question is do you have a console attached? then it is not playing with maxlogins [quote]

when is limits.conf taking effect?

Quote:
When do you really need to log in as root?
when the machine has crashed or in single user (no more network then...) and so you are at the console...
Please excuse me - I don't understand.
I want to setup my system without any X and am working just on console.

Why isn't it possible to limit count of root logins in console?

EDIT: Ok, guess I can imagine a situation when this will cause a problem for the admin.
Last edited by daWonderer; 03-01-2012 at 04:01 AM..
 
Login or Register to Ask a Question

Previous Thread | Next Thread

10 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Can you gain root privileges if the suid program does not belong to root?

I had a question in my test which asked where suppose user B has a program with 's' bit set. Can user A run this program and gain root privileges in any way? I suppose not as the suid program run with privileges of owner and this program will run with B's privileges and not root. (1 Reply)
Discussion started by: syncmaster
1 Replies

2. Shell Programming and Scripting

Find users with root UID or GID or root home

I need to list users in /etc/passwd with root's GID or UID or /root as home directory If we have these entries in /etc/passwd root:x:0:0:root:/root:/bin/bash rootgooduser1:x:100:100::/home/gooduser1:/bin/bash baduser1:x:0:300::/home/baduser1:/bin/bash... (6 Replies)
Discussion started by: anil510
6 Replies

3. SuSE

Auditors want more security with root to root access via ssh keys

I access over 100 SUSE SLES servers as root from my admin server, via ssh sessions using ssh keys, so I don't have to enter a password. My SUSE Admin server is setup in the following manner: 1) Remote root access is turned off in the sshd_config file. 2) I am the only user of this admin... (6 Replies)
Discussion started by: dvbell
6 Replies

4. Solaris

Migration of system having UFS root FS with zones root to ZFS root FS

Hi All After downloading ZFS documentation from oracle site, I am able to successfully migrate UFS root FS without zones to ZFS root FS. But in case of UFS root file system with zones , I am successfully able to migrate global zone to zfs root file system but zone are still in UFS root file... (2 Replies)
Discussion started by: sb200
2 Replies

5. Solaris

Lost Root Password on VXVM Encapsulated Root Disk

Hi All Hope it's okay to post on this sub-forum, couldn't find a better place I've got a 480R running solaris 8 with veritas volume manager managing all filesystems, including an encapsulated root disk (I believe the root disk is encapsulated as one of the root mirror disks has an entry under... (1 Reply)
Discussion started by: sunnyd76
1 Replies

6. UNIX for Dummies Questions & Answers

How to allow access to some commands having root privleges to be run bu non root user

hi i am new to unix and i have abig task. i have to \run particular commands having root privileges from a non root user. i know sudo is one of the way but i need sum other approach kindly help Thanks (5 Replies)
Discussion started by: suryashikha
5 Replies

7. AIX

Can't login root account due to can't find root shell

Hi, yesterday, I changed root's shell in /etc/passwd, cause a mistake then I can not log in root account (can't find correct shell). I attempted to log in single-mode, however, it prompted for single-mode's password then I type root's password but still can not log in. I'm using AIX 5L version 5.2... (2 Replies)
Discussion started by: neikel
2 Replies

8. UNIX for Dummies Questions & Answers

I need it to prompt me for a root password, so I don't have to log as root

Hi folks, I'm trying to install a program, and I want to place some of the executables into /usr/bin so that they can be executed from any folder on the computer. I've been giveng the root password, but told never to log in directly as root. Instead, I can wait for a password prompt. However, I... (2 Replies)
Discussion started by: lunchtime
2 Replies

9. Linux

how to access root priveliges if root password is lost

wish to know how to access root password it root password is forgotten in linux (1 Reply)
Discussion started by: wojtyla
1 Replies

10. UNIX for Dummies Questions & Answers

Run non-root script as root with non-root environment

All, I want to run a non-root script as the root user with non-root environment variables with crontab. The non-root user would have environment variables for database access such as Oracle or Sybase. The root user does not have the Oracle or Sybase enviroment variables. I thought you could do... (2 Replies)
Discussion started by: bubba112557
2 Replies
Login or Register to Ask a Question