Softpanorama
(slightly skeptical)
Open Source Software Educational Society
May the source be with you, but remember the KISS principle ;-)
Softpanorama Search
|
Softpanorama |
May the source be with you, but remember the KISS principle ;-)
Softpanorama Search
|
| News | Recommended Links | Rainbow Books | Authentication | Unix permissions model | Solaris RBAC | ACL | Solaris ACLs | Linux ACL |
| Group administration | Sudo | PAM | Root Security | History | Humor | Etc |
The root account has virtually unlimited access to all programs, files, and resources on a system. The root account is the special user in the /etc/passwd file with the userid (UID) of 0 and is commonly given the user name, root.
It is not the user name that makes the root account so special, but the UID value of 0. This means that any user that has a UID of 0 also has the same privileges as the root user. Also, the root account is always authenticated by means of the local security files.
The root account should always have a password, which should never be shared. The root account should be given a password immediately after the system is installed. Only the system administrator should know the root password. System administrators should only operate as the root user to perform system administration functions that require root privileges. For all other operations, they should return to their normal user account.
There are multiple method of slightly increasing root account security. See Root Security. The best solution is provided by Solaris RBAC.
Attention: Routinely operating as the root user can result in damage to the system because the root account overrides many safeguards in the system. it is much safer to use sudo for any system adminisrator working with important production servers.
A common attack method of potential hackers is to obtain the root password.
To avoid this type of attack, you can disable direct access to your root ID and then require your system administrators to obtain root privileges by using the su - command. In addition to allowing you to remove the root user as a point of attack, restricting direct root access allows you to monitor which users gained root access, as well as the time of their action. You can do this by viewing the /var/adm/sulog file. Another alternative is to enable system auditing, which will report this type of activity.
To disable remote login access for your root user, edit the /etc/security/user file. Specify false as the rlogin value on the entry for root.
Before you disable the remote root login, examine and plan for situations that would prevent a system administrator from logging in under a non-root user ID. For example, if a user's home file system is full, the user would not be able to log in. If the remote root login were disabled and the user who could use the su - command to change to root had a full home file system, root could never take control of the system. This issue can be bypassed by system administrators creating home file systems for themselves that are larger than the average user's file system.
For more information about controlling root login, see System Configuration for a CAPP/EAL4+ System.
Copyright © 1996-2009 by Dr. Nikolai Bezroukov. www.softpanorama.org was created as a service to the UN Sustainable Development Networking Programme (SDNP) in the author free time. Submit comments This document is an industrial compilation designed and created exclusively for educational use and is placed under the copyright of the Open Content License(OPL). Site uses AdSense so you need to be aware of Google privacy policy. Original materials copyright belong to respective owners. Quotes are made for educational purposes only in compliance with the fair use doctrine.
Disclaimer:
Last modified: August 14, 2009