Fedora Security :: Run Auditd As Non-root User?
Nov 2, 2009Can the audit daemon (auditd) be run by a non-root user? I'd like to create a special user who only run the audit daemon. Is that possible?
View 1 Replies
ADVERTISEMENT
Fedora Security :: Redirect Auditd Log To Remote Host?
Sep 17, 2009way to redirect the audit daemon message to a remote host I checked the auditd.conf and it's man page and find that the log location is specified by the line log_file = file_path and in the man page
Quote:
"log_file: This keyword specifies the full path name to the log file where audit records will be stored. It must be a regular file."
does this mean that the auditd does not have the function to redirect the logs to a remote hosts.
Fedora Security :: Need To Login As Root User
Sep 8, 2009I have a problem, I have installed Fedora 11. And i need to login as root user.
How to do so?
Fedora Security :: How To Disable Root And User Password
Jan 12, 2009It seem like unix abit annoying every time you log in you need to password can I disable it
View 10 Replies View RelatedSecurity :: Auditd Missing Syscalls?
Jun 11, 2010I want to monitor a part of my filesystem for changes, including file opening and attempts to open files/dirs without necessary permissions.Since every read/write/open is run by syscalls i figured that running the auditd would be the simplest way to do this. I installed auditd and added a rule:
Code:
auditctl -w /srv -p warx
However I do not get any writes reported via ausearch -i. As a simple example, if I run
[code]....
Security :: How To Enable And Config Auditd In Kernel 2.6.9-5.EL
Mar 14, 2010Anyone can tell me how to enable and config auditd in linux kernel 2.6.9-5.EL. I have only found command auditd and auditctl in server that run kernel 2.6.9-5.EL. I ran auditd & and can saw auditd ran in my server. But I couldn't do anything with auditctl, no status, no rules, nothing :| . I tried to find audit.rules or auditd.conf but that nothing I can find.
View 1 Replies View RelatedUbuntu Security :: Can Ssh Into Root But Not User
Apr 22, 2011Having trouble adding a regular user with ssh access on Hardy 8.04. I can ssh into root, but not into the newly created regular user with the same ~/.ssh/authorized_keys
Code:
sshd_config has:
AllowGroups sshlogin
AllowUsers user root
[code]....
what could be preventing ssh login to ~user? And yes I would like to disable root ssh access, but it would be nice to be able to ssh into user first
Security :: Add Root Permissions To User ?
Jun 5, 2010How do I add root permissions to my user account?
I want full permissions for all computers in my house, without having to get up and go to the other room and change permissions for the file, folder, drive, directory, computer, etc., then go back to the other room again.
I just created a partition, as THIS user, THIS machine, rebooted, and cannot create a folder on the partition I just created. UGH. No more of this stuff... I guess at the very least, I'll still have to log onto each machine for this?
Security :: Run Su As A Non Privileged User To Log In As Root?
Aug 15, 2010I am trying to run su as a non privileged user to log in as root. However, this only works when I make /etc/shadow world readable. I have /lib/security/unix_chkpwd as a setuid root executable
I use the following pam-file for su:
Code:
# Begin /etc/pam.d/su
auth sufficient pam_rootok.so
auth required pam_unix.so
account required pam_unix.so
session optional pam_mail.so
[Code]...
Security :: Ssh As Root To A Workstation And Then Run Commands As Another User?
Jun 10, 2009Senario is we have a system where root has authorised keys set up so that it can do a passwordless ssh to $WORKSTATION. I then need to run a script on $WORKSTATION as user "bob" and NOT as user "root". I do not want to set up user "bob" to be allowed passwordless ssh so any ideas how I can do this?I have tried variations of (as user "root"):ssh $WORKSTATION "su - bob; ./my_script"
View 5 Replies View RelatedSecurity :: Sudo Non-user/non-root Password?
Feb 19, 2010Stumped on this one. I'm trying to set up limited sudo authority on a desktop with some sensitive user data, and as an extra precaution I wanted to configure sudo to use a password other than the user's or the root's. I'm not sure how to do this. From the manual, we have a few options, such as "runaspw" or "targetpw", but none seem quite what I'm looking for.For instance, "runaspw" could be used if I created a user for nothing other than sudo(ing) purposes, but it requires you set "runas_default", which means that said user would have to have authority to execute said commands in the first place. This is workable, but seems like a lot of extra configuration for each specific command that I want to run, as well as creating some issues with simply commands such as "shutdown" or "reboot". Also, "targetpw" can be used in conjunction with a sudo(ing)-only user if I set an alias, but, again, this isn't quite what I am looking for.
Ultimately, what I am really concerned about in this situation are keystroke loggers, so I would prefer to avoid repeated entering the user or root password when performing administrative tasks. Also, I would prefer not having to create a sudo(ing)-only user as mentioned above to prevent a comprimised password resulting in an attacker being able to log into my system.
Ubuntu Security :: Root User Built-in Protections?
Jan 30, 2010Any Linux machine (except PCLOS) that I log into as root user seems to not start networking. I haven't tried sudo /etc/init.d/networking restart , to see if it does start, because anytime I DO this, it's for 'local' work. How about default root user configuration settings???
View 2 Replies View RelatedUbuntu Security :: Risk With Automount As Root User
Jun 20, 2011i want to know the risk with auto mounting flash drive as a root user,if for example there is a Usb Flash drive inserted into the system and we login into root unknowingly, and this flash drive contains an autorun script which calls a new script that can place viruses in your system, since you are in the root it will not even prompt for password and if the script is fast enough you will not even see it executing.
View 7 Replies View RelatedSecurity :: Doesn't Access Root Passward From User Login
Nov 26, 2009I get the problem to acess root password when i am in user login, means wahen i am in user login and want to install software from terminal then he asked root password, when i supplied root password but he give me login incorrect.
View 2 Replies View RelatedSecurity :: SELinux Allow Non Root User Bind To Port <1024?
Oct 24, 2010My understanding is SELinux adds type enforcement to standard Linux. This means that both the standard Linux and enhanced SELinux access controls must be satisfied to access an object. Which means that thing that is prevented to do in the normal standard Linux will be also prevented in the SELinux System? Does SELinux make it possible to run a non-root software to bind to a port < 1024? something that standard Linux won't allow? If not, what other suggestions do you have for allowing a program to run as non-root but able to bind to privileged ports? I know all about using the port re-direction such as ipchains, iptables.
View 4 Replies View RelatedSecurity :: Prevent A Non-root User From Shutting Down, Rebooting Or Suspend The System?
Mar 3, 2010I'm using Gnome and I'd like to still have the ability to reboot/shutdown from one particular account as well as root. How would I modify the chmod command to add this ability?Also, I have a few users who just will hold the power button in to shutdown the machine. How can I keep them from doing this?// Pruned from the vintage 2007 Prevent a non-root user from shutting down, rebooting or suspend the system thread. Please create new threads instead of resurrecting ancient ones.
View 2 Replies View RelatedSecurity :: Sshd Not Working Properly \ System Has Only One User (root) Without Password?
Aug 10, 2010I have a problem with sshd daemon on a target linux system:The system has only one user (root) without password.The sshd_config looks like:
Code:
Port 22
Protocol 2
[code]...
Security :: Su - Incorrect Password - When Logging As Wheel User And Trying To Access Root
Dec 18, 2010I have tried to not allow root access and have created a wheel user.
Now I can not logged in as root.
Its okay but when am logging as wheel user and trying to access root then it says:
Code:
Ubuntu Security :: Actions Requiring Root Privileges Asks For Wrong User ?
May 24, 2011In our group we use NIS and have a group set up called netadmin which is given root privileges on each machine. Each machine also has a localuser called localuser created and used during installation. When logged in as a member of netadmin, attempting any action that requires root privileges (e.g. installing software in Ubuntu Software Center) results in a prompt asking for localuser's password, not the current user's password.
Does anyone know the cause? Configuration issue or Ubuntu issue? We can get around it.
Security :: Resetting Root Password In Suse In Single User Mode & Rescue
Jul 14, 2009When I go to single user mode for resetting root password, It ask root pawssword for login.The message displayed on prompt is "Give root password for login.On the boot prompt, I select kernel and press 'e' and after one space type 1 for single User mode and then press 'b' for booting.It shows message entering in single user mode but ask root password. Even I tried into rescue mode, but I couldn't ser root password.In rescue mode on prompt, It shows rescue login: I typed root, But when typed 'passwd' foe resetting root pawssword,It shows message unknown user and not authetication.
View 1 Replies View RelatedFedora Security :: Become Root Without Root Password?
Oct 20, 2010I found this on Bee's website. For more info on this exploit there are links there:[URl]..All you have to do in Fedora 13 is enter the following lines in a shell as normal user:
[Code]...
I don't think this can be considered solely an "upstream" problem, because I first tried it in Arch using the same version of glibc, and the final command causes both gnome-terminal and xterm windows to disappear.
Software :: Change A Process Running In Root-user To Non-root User ?
Oct 28, 2009Is It possible to change a process running in root-user to non-root-user by setting suid / uid / euid / gid etc... I so please instruct how, when and wat to set in order to change a process running in root-user to non-root user
View 4 Replies View RelatedFedora :: Is There Root User Name To Use?
Apr 13, 2010We are trying to setup fedora 12, and it has installed and now is asking for a user name on the base install, so far all we have tried will not let us in. We have, installed it a few times to see if there is a place to install the uer name or is there a root user name to use?
View 5 Replies View RelatedFedora :: Setting Up Root User?
Apr 16, 2011I am novice user of Fedora 14. I want to set up root user for Fedora 14.
How do I do it?
Fedora :: How To Install Rpm As Non-root User
Jun 10, 2011how to install rpm as non-root user
View 5 Replies View RelatedFedora :: Cannot Login Other Than Root User
Jun 17, 2011Well I did something pretty stupid and now I can't log in with my user other than the root user. Basically, I wanted to change my username and so I when to the admin > user & accounts - and selected the account I wanted to change. Anyway I did that and then logged out. Since then all I get when I reseted is a spinning mouse ball and a black screen. I can get into the shell prompt - but I'm not sure how I'd go about fixing this issue I created. At the moment I'm logged in the shell with root, and if I type 'id' I can see my old username, but I think the links behind it are broken.
View 5 Replies View RelatedFedora Security :: SSH Only As Root?
Aug 19, 2009I have a fedora 10 server to which I can ssh as the root user using RSA.
However for any user other than root a password is always requested.
I have made changes to PAM and check the rights to all the files and read pages upon pages. I can mess it up completely so no one can login but cant get it so that anyone other than root can use a public key.
Another interesting and may be related item is that when any user logs in, with a password, via ssh then they get the error:
Could not chdir to home directory /home/xxxx: Permission denied
But they can cd to their home directory and have no problems.
I am thinking that this may be to do with the mount. The home directory is on a HDD but the system dive is an SSD.
I have gone over everything so many times I am now lost, I must be overlooking something so simple and obvious its just not coming to mind.
Fedora :: Overwritten Root User Directory ?
Aug 27, 2009I did a fresh fedora install and have overwritten the root user directory ( /root) with a backup of a previous install. Now I cannot log on through the login screen with the root user password. I can login su - as root on the command line with the password OK.
View 1 Replies View RelatedFedora :: Can't Login As Root Or Any Other User After Hw Upgrade?
Dec 18, 2009I've recently upgraded my hardware. Now, the system boots perfectly fine, but I can't login to the tty as root or any other user. Infact yes, I can login, but as soon as it shows Last Login, it exits and then I'm back to a login prompt. I've successfully booted into single user mode, and changed all the passwords, but still it fails. X doesn't start, although I think it's due to the old xorg.conf having the wrong driver.
View 9 Replies View RelatedFedora :: Sudo Running As Root Instead Of Specified User?
Jan 25, 2010I have a weird question about the sudoers file. Currently, I am running "Red Hat Enterprise Linux ES release 4 (Nahant Update 8)".
I edited the sudoers file (via visudo) and added the following:
User_Alias RPTS2 = vtmtest
RPTS2 xxxxx = (jboss) /oracle/app/oracle/apps/rptsd/deploy-jboss/deploy_rpts_jboss.sh
The user (vtmtest) issues the following command
sudo /oracle/app/oracle/apps/rptsd/deploy-jboss/deploy_rpts_jboss.sh
and gets this message:
user vtmtest is not allowed to execute '/oracle/app/oracle/apps/rptsd/deploy-jboss/deploy_rpts_jboss.sh' as root on xxxxx
When I look at the log, I see the following:
Jan 25 14:17:57 xxxxx sudo: vtmtest : command not allowed ; TTY=pts/12 ; PWD=/export/home/vtmtest ; USER=root ; COMMAND=/oracle/app/oracle/apps/rptsd/deploy-jboss/deploy_rpts_jboss.sh
1. Why does sudo try to run as the root user, when I have specified in the command to run as jboss?
2. Do I need to specify anything else so that this command can run as the "jboss" user and not "root"?