Fedora Security :: How To Make A Guest User
Jul 1, 2009
so, sometimes happen that while I'm on my pc comes my mom and say "can I look a things 10 minutes?", this means that I have to leave my computer in her hands for ten minutes... enough to make something wrong! In ubuntu there is a usefull button "start guest session"..but here in fedora I can't find it...So, I create a new user and I called it "Guest" and I eliminated the password, so they can access also without me... but I have some problem:a) I set the home directory of this guest in /tmp/guest thinking that in this way everytime the home directory will be clean... but this doesn't work...b) is there a way to prevent in all cases this account to autenticate as root? So, if they try to install something it hasn't to show the box "autenticate as root", it has to say only "you can't"
View 14 Replies
ADVERTISEMENT
Jan 14, 2010
I noticed (the hard way) that enabling a guest session under 9.04 does not lock the source user. I enabled a guest session for someone and came back to find them rooting through my files. By quitting the guest session, it goes back to the source user's desktop without requiring a password. Shouldnt it go to gnome-screensaver automatically? Can this be changed? Is it a bug?
to replicate: log into source user's account use the menu to start a guest session quit the guest session root through files un-opposed.
View 6 Replies
View Related
Mar 22, 2009
I have an encrypted /home partition but would like to set up a guest account for my brother. Obviously, encryption doesn't work so well when you give out the key so what I'd like to do is specify a different, unencrypted location as a home directory for the guest account so he doesn't need access to that partition. Is there a way of doing this?
I've got fedora 10, dual boot with windows, 2 hard drives, 1st is NTFS windows. 2nd is split into a swap, ext3 for the OS, and an encrypted partition for /home.
View 2 Replies
View Related
Apr 7, 2009
I'm just curious as to what security measure's I should be taking to make my box a little less vulnerable? I'm still experimenting/playing with Linux, use the net, IM, download this and that and was wondering how secure fedora 10 was out of the box?
View 12 Replies
View Related
Mar 16, 2009
I have a local file server running Samba on Fedora 9. It's already configured and serves a few people without any problems. I am now trying to set up a new read-only share with the username 'guest' and the password 'guest'. However, with no success so far! If I log on as 'guest' with the password 'guest' like so:
Code:
su - guest
No problem. Once logged in, if I try:
Code:
smbclient //samba/share
I'm prompted for a password. If I enter 'guest' I get:
Code:
session setup failed: NT_STATUS_LOGON_FAILURE
If I enter nothing (null) I get:
Code:
Anonymous login successful
Domain=[RIVER] OS=[Unix] Server=[Samba 3.2.8-0.26.fc9]
tree connect failed: NT_STATUS_LOGON_FAILURE
View 8 Replies
View Related
Apr 3, 2011
I installed a Fedora 14 guest on a Fedora 14 host with Virtualbox, then i run these commands on the guest:yum install kernel-devel kernel-headersbut if i try to install the virtualbox-guest additions on the guest, is still complains about that it's unable to find the kernel source directory?Ha anyone succeded installing the guest additions on a guest Fedora 14?
View 2 Replies
View Related
Jun 3, 2010
I had a lot of trouble installing Guest Additions within the Fedora 13 Guest on a Linux host. I had to mount the vboxGuestadditions.iso from the Device --> CD/DVD Devices menu. Then I located the appropriate package for my system. In my case it was the AMD64 Linux version.I ran this as administrator in Terminal. I used the "bash" command followed by the package name. This was after CDing the the appropriate directory. The packaged installed, I then rebooted and it worked fine. (Something that would make this easier is to load a script into nautilus that would allow me to open a locatation as administartor at the open window. I'm sure there is something in Fedora to do this but I couldn't find it in a hurry so I used the command line way).
View 5 Replies
View Related
Jul 24, 2010
Is it possible to create Guest user in ubuntu 10.04 and when I log out from Guest user or turn of computer, it will not save anything.
View 2 Replies
View Related
Jun 12, 2011
i installed virtual box one week ago.i downloaded a rpm package named virtualbox-4.0.4-1.2.3.i586.rpm and installed it via yast and i have some problems with it.my problem is i can't make a guest os in currect screen resolution and i can't connect any device(flash drives) in virtual box.
View 8 Replies
View Related
Dec 4, 2009
how to make a admnistrator account and change normal user role admin role i want to modify file system
View 3 Replies
View Related
Dec 31, 2010
I have a very stupid case, I have to use a domain user to install one software in RHL4.8, but this software need a super-user permission but not root.
So I need a domain user who has super-user permission.
Not use su, sudo.
If I use su or sudo ,the software will be installed under root. The requirement is the software must be installed under a domain user.
How can I do?
View 4 Replies
View Related
Apr 7, 2011
I m new with Fedora 14, and i have a basic business case :
I want to setup a user which should
- only connect to the server with SSH (ex.: no X11 connection).
- cannot change its shell
- cannot do any SU / SUDO command
This user is very similar to a SERVICE user, as I expect him only to run a single program (its shell).
View 7 Replies
View Related
Sep 26, 2010
I know that you can make it full screen, however it just makes the background OS's background black, and still provides a smaller display. Is it possible to make the guest OS's screen (or display) full size?
View 6 Replies
View Related
Sep 17, 2010
I've created a guest user in the group "user." I'd like to limit its read access to its own home directory. However, by navigating through File system>home it's able to read my home directory. I was under the impression that users were limited to their own home directories. Am I missing something, or is there a group I can assign this guest to, to limit its read access to its own home directory? I've read about Pessulus (I use Gnome), but that seems to be geared toward limiting access to applications, not directories.
Ideally, I'd like to create a group that cannot navigate through any files except its own home directory. But it seems that if I try to do that, the guest user will not be able to execute any applications. I've read all the posts (and other forums) I could find about creating such a limited account, but the chroot jail is beyond my understanding. I get the feeling that it's geared toward networks.
View 9 Replies
View Related
Feb 23, 2010
one thing i can't seem to be able to do is give the guest account just these permissions: using firefox (or other browser) and using one file directory and using a text editor. means the guest can browse the net and sefe some infos form that - nothing more. the previous version had something like that, it was really easy for me, a noob, to do it with two or three clicks. if this possibiility exists, what to do. if it's not implemented... maybe it should be. 'cause many people let others use the computer but don't want any complications...
View 6 Replies
View Related
Jun 25, 2011
I am trying to use a guest account in Ubuntu 10.10 however I am unable to stop the guest account from authenticating as a superuser and gaining root permissions dispite removing all permissions from the user-group control panel. The new guest account I created is not part of the admin group. However, with my new guest account I am unable to start a guest session from the panel, AND if I use the guest session from the panel I dont have the problem with the guest session being able to authenticate. How do I prevent super user authentication from an account in this situation? It seems that any account can authenticate and my /etc/sudoers file looks like this:
# /etc/sudoers
#
# This file MUST be edited with the 'visudo' command as root.
#
# See the man page for details on how to write a sudoers file.
#
Defaults env_reset
# Host alias specification
# User alias specification
# Cmnd alias specification
# User privilege specification
root ALL=(ALL) ALL
# Allow members of group sudo to execute any command
# (Note that later entries override this, so you might need to move
# it further down)
%sudo ALL=(ALL) ALL
#
#includedir /etc/sudoers.d
# Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL
View 9 Replies
View Related
Jan 26, 2011
I spill my soda on my keyboard and ended up in a 4 day war with my pc.Now my tab, capslock, left shift, and down vol no longer works. I'm going to take it into the shop in the next couple of days to probably replace the keyboard. (If only lenovo kept the easy access keyboards like ibm had on the thinkpads). Something tells me that they will want to log in and test out the keyboard. So I created a guest account with a simple password. I changed my normal user home dir to 770 permissions and changed guest's shell to /bin/rbash. (both found in other posts.) Is there anything else I should do to secure the computer while it is in the shop?[I use su, sudo isn't configured to work (its a dependency so I can't uninstall)]. I have a pretty decent root password.
View 10 Replies
View Related
Sep 8, 2009
I have a problem, I have installed Fedora 11. And i need to login as root user.
How to do so?
View 14 Replies
View Related
Nov 2, 2009
Can the audit daemon (auditd) be run by a non-root user? I'd like to create a special user who only run the audit daemon. Is that possible?
View 1 Replies
View Related
Apr 14, 2010
In fedora 12 how can i configure the system such that a particular user can browse only selected web sites.
View 9 Replies
View Related
Jun 13, 2011
I would like to know how to share a folder in samba with no need of password for individual user without using guest
View 5 Replies
View Related
Jul 20, 2011
I have a samba server with security user. I have a number of shares inside the share with different users logins. But while accessing the shares from windows, in the login prompt, by default username it takes as the guest. How will I disable the default guest user login ?
View 2 Replies
View Related
May 10, 2011
After I do a recommended SELinux change from an alert:
'grep blender /var/log/audit/audit.log | audit2allow -M mypol'
the next time I boot, I have to add the rule again. How would I make this permanent? Can this only be done with the SELinux Policy Generation Tool? I've tried making bug reports for some SELinux warnings.
View 3 Replies
View Related
Jan 12, 2009
It seem like unix abit annoying every time you log in you need to password can I disable it
View 10 Replies
View Related
Jun 4, 2009
Currently working on the targeted policy, I need a help in doing the following things as quick as possible:
1- How to create a totally new SELinux user (not mapping new linux user to SELinux user) I want a new user with no roles or with a maximum of 1 role. I also need how to compile the new user so I can used it for mapping users. At the time, I've tried creating a new file inside /etc/selinux/targeted/contexts/users similar to the other users inside this directory, but it did not actually seem to appear when using the command semanage to list SELinux users : semanage user -l
2- How to create a totally new SELinux role (empty for now) ? and how to make the relation between this new role and domains or types.
3- How to create new domain, actually following some old instructions I created the .fc and .te files, but not the .if file, which is more complicated than the other 2 file.
View 10 Replies
View Related
Sep 25, 2009
I am a new Linux user and have a question about the administrative authentication. When I am logged in as a user and I need to do something that requires root privileges the little password window comes up and I enter the root password. My question is how long are the root privileges granted for?I noticed that a few minutes after finishing checking out the firewall configuration tool and closing the window that I was still able to re-enter the fire wall tool and other administrative tools. How do I log out of the root privileges without logging out and then back into my account?
View 2 Replies
View Related
Sep 25, 2009
way to automate adding and removing users from 10 different Fedora 7 servers. We use them as print servers and our users have a user name and password to authenticate with when printing. We also use Samba to talk to a W2k3 server that tracks and charges the users for what they print. The set up was done by a vendor and after 6 months of being in production the scripts they created has flaws.
I need a way for a script to run as often as possible that will remove, change, or delete user accounts from the servers and from Samba. how to most effectively achieve this?
It would be ideal to have a file that gets written to when a change needs to be made then a script to make these changes?
View 1 Replies
View Related
Nov 6, 2010
Is there any way to user can increase or lower his privileges? I tried by "semanage login" but it works only for admin i think. I would like for example change range form s0:c0 to s0:c0.c10 and vice versa.
View 6 Replies
View Related
Jan 1, 2011
My Linux is Fedora release 13. I found there are a few users created not by me. I am not sure if the system got hacked somehow. Then the hackers created these users, i.e. (1) oracle, (2) exim, (3) test, (4) cox. I tried to delete all of these four users by using "usrdel" command but the system said "I cannot delete these users as the users are logging in". If my system got hacked ?? or these users are created by the system itself?
View 8 Replies
View Related
Feb 27, 2011
My program attributes (it uses semanage to change range): I'd like to ordinary user (bartek) can execute my program. I executed as root:
chmod u+s se_chmod4
so now my user can change his range in permissive mode by my program. My politic: In enforcing mode i can see attributes but when i want to excute i get:
How should look like my TE file that user (bartek) could execute my program (forget at moment about "semanage")?
View 8 Replies
View Related
