Ubuntu Security :: Graphical Root Access Inconsistancy?
May 25, 2010
I temporarily placed a Back in Time backup into the root partition, by running it as root.However, I couldn't get it back out on the Desktop, so I opened a terminal window and ran 'sudo nautilus', which I now know should be avoided. I couldn't bring up "Properties" of the root folder, but I was able to open it and see the backintime folders. I then clicked on root, which was in the toolbar row "< root backintime" and was able to get full access to properties. I flipped folder access to "create and delete files" for Otherter disconnecting from the network, and moved the folder to the Desktop. So, is this correct or is it inconsistent that I could open root from the toolbar and not from the folder listing when opening 'filesystem'?
View 6 Replies
ADVERTISEMENT
Mar 3, 2009
I'm not a Linux noob, but I am far from guru. I'm running a single board computer with a slightly customized Debian Etch (customized by the SBC vendor). No Gnome/KDE/X installed. My application is a control application which uses SDL (Simple DirectMedia Layer) to paint some basic graphics on the VGA. I need to run it as root because the application calls iopl() to access an IO port.If I run my application manually from the command line, life is sweet. From Googling around, I found http://www.debian-administration.org/articles/28, and hence I:1) Created a script in /etc/init.d2) Executed "update-rc.d scriptName defaults" to link the script into the boot sequenceAll very straightforward. My application starts at boot. But when I try to SSH/SFTP into the SBC, I get "Connection refused". So I can't manage the SBC anymore, and this is a big problem. I am not sure if it's relevant, but my application starts before the SSH daemon.My script looked like:
case "$1" in
start)
echo "Starting my application"
[code]...
View 1 Replies
View Related
Feb 17, 2010
When creating 10 samba users I also created Linux users. I do not want these Samba users to be able to use putty, winscp etc to access the server.
Do you know how I can restrict ssh access to specific users?
View 6 Replies
View Related
Dec 7, 2010
I would like to know if it is possible to deny the access to a file for root? Would ACL's be a possibility? I have "googled" around but haven't found anything interesting (except SELinux). I should secure a password file to an important database.
View 6 Replies
View Related
Jul 13, 2010
I have an ADSL modem and router, its OS is linux. It runs ftp service, and I can read files in its file system, but I have no permission to list files and to write files. It has TR069 protocol connections and can upgrade remotely.It has ssh, but not started.
View 1 Replies
View Related
Apr 23, 2011
I just installed gufw and was in quite a hurry. A root acces prompt came up as I started gufw for the first time, and I quickly responded with appropriate password. All I saw in this hurry was that it had something to do with the usr/share directory.So, here's my question: Does gufw require root access when first starting up
View 6 Replies
View Related
Oct 6, 2009
I'm currently running a dual boot (VistaFedora 11) system. I've noticed that the first time I access files on the Windows partition (via Nautilus GUI) I'm prompted for root access. However, on subsequent attempts to access the Windows partition I am NOT prompted for root access (even after I close/re-open Nautilus). My concern is that I'm leaving my root access "open".
View 4 Replies
View Related
Nov 26, 2009
I get the problem to acess root password when i am in user login, means wahen i am in user login and want to install software from terminal then he asked root password, when i supplied root password but he give me login incorrect.
View 2 Replies
View Related
Dec 18, 2010
I have tried to not allow root access and have created a wheel user.
Now I can not logged in as root.
Its okay but when am logging as wheel user and trying to access root then it says:
Code:
View 14 Replies
View Related
Feb 12, 2011
I have been trying to use my DS2490 USB to serial device with a Maxim .DG1921G thermocron with owfs. It is supposed to give me access to a virtual file system for the thermocrom without needing to launch owfs as root.
Code:
/var/log/messages gives:
Feb 8 16:22:45 norman-HP-G56-Notebook-PC kernel: [ 236.140141] usb 5-1: new full speed USB device using ohci_hcd and address 2[code]....
but if ds2490 module is loaded it works when run sudo.It seems from this that it is a lack of permissions to USB but I have tried all the methods on at http://owfs.org/index.php?page=udev etc. to overcome this and a few others but none work.I am running Ubuntu 10.10 kernel 2.6.35-22-generic #33-Ubuntu SMP
View 1 Replies
View Related
Feb 6, 2010
When I run graphical applications as root (on KDE4), they inherit my window decorations setting, and use the default widget style. I know that, obviously, I can configure root's widget style to match mine, but I do like the visual distinction. I just don't like it using my window decorations, because I have that nicely configured to match my widget style (and therefore clash with anything else). Is there any way to tell KWin to decorate root windows differently, or even run a separate window manager for root windows?
View 9 Replies
View Related
Jun 28, 2010
I was reading /usr/share/kde4/config/kdm/kdmrc and see this 3 lines:
# Allow root logins?
# Default is false
#AllowRootLogin=false
this doesn't mean that root can't login in a graphical mode? (I can login as root)
[Code]...
View 5 Replies
View Related
Apr 15, 2010
Does any body knows how to disable the root login to the GUI , like i am running my redhat server on runlevel 5 and i dont need tht root to get login to the GUI , i ma talking about redhat 5.
View 2 Replies
View Related
Nov 30, 2010
I have configured putty on my RHEL5 pc. i just wanted to know if i can take graphical access of window pc from linux pc?
View 2 Replies
View Related
Jan 17, 2009
I have updated the gdm file to be able to log in as root in Fedora 10.Nevertheless after I had selected package updates to be installed logged in as root I still get an error message that I do not have enough privileges.The terminal installation method is a bit of a problem since I do not think it will search for dependencies and therefore it can be excessively long to figure out what is missing for a package installation. In simple cases it works OK, but in more difficult cases it is a bear.
View 8 Replies
View Related
Dec 14, 2010
When I start my ubuntu linux system it automatically logs into a user (not root) in graphical mode and it does not asking for any password. when I try to go to the command prompt the password is required. How do I give password for my user. The provider installed the system and not me..
View 5 Replies
View Related
Jun 20, 2011
I have a Linux mail server (Fedora). This server was set up long before i joined this organization. Now I have these issues I would request assistance:
1. I am not able to access the Graphical User Interface(gui) on this machine. Startx does not work. I have also tried using combination keys alt+ctrl+f...keys but no progress. As a result am not bale to do some tasks.
2. The clamav that is on the machine has since become outdated. Efforts to update it to latest versions have failed. How do i get to update clamav and protect my system?
3. Because of not being able to access the gui as well as the inability to update clamav have led to my server apparently sending spam mail which in turn have led to my public ip being black listed in a number of sites. Now how can i secure this server so that it stops sending the spam mail and hence avoid future blacklisting?(NB am using postfix and the server sits behind a router which connects to the Internet)
4. I have observed that the server has some iptables rules set but everytime the server restarts the rules stop. I have to manually restart them again to run. How do I sort this?
View 8 Replies
View Related
Jan 20, 2011
want to run VirtualBox with root permissions. Trouble is that only when run as root i can access attached USB devices inside of a virtual machine, otherwise, these a greyed out).Now running VirtualBox as a root user also changes the configuration folders, making all my virtual machines already defined disappear. I also don't want to copy all to the root configuration folders. Is there a way to give the VirtualBox root permissions but without actually running the application as a root user. Is it possible to do without changing the permissions of the non-root user, i.e. i don't want my user to have all root permissions, due to security considerations.
View 1 Replies
View Related
May 9, 2010
I know how to manage them from a commandline but I was wondering if there are any graphical partition editors that understand and work with lvm2?
View 1 Replies
View Related
Apr 12, 2010
I run ProFTPd with TLS authentication on my Debian Lenny server. My problem is that despite of the fact that my users connect chrooted, one of my friends had root privileges after logging in form a Macintosh and could browse the root directory, too.
View 1 Replies
View Related
Feb 19, 2011
I was using the latest stable release of Debian, dual-booted alongside Windows Vista, with the GNOME desktop, installed via netinst, trying to build and install a library that I knew and trusted, when suddenly I couldn't open the Root Terminal. I clicked the link (in Applications->Accessories (I think, whatever the top one is)->Root Terminal), and in the taskbar I saw an item that said "Starting Root Terminal". A few seconds later, that went away, but the terminal still wasn't open. I tried the regular user terminal, to see the same thing happen. Unsure of what was happening, I tried restarting my computer, since that's always the first step you should take in computer problems.
When I restarted, GNOME wouldn't start. The screen would flash a bit for a few seconds, then a dialog box would appear over a background of static that said "The greeter application is crashing. Attempting another one...".t would then go back to the DOS-style kernel, wait a second, and then the same thing would happen. After several of that, I would get a blue screen which said something to the effect of "It has been detected that the desktop environment has crashed six times in the past 30 seconds.
Waiting two minutes before trying again." When it did that, I tried logging in as root to assess the problem. I gave it the correct password, but it said that it was an incorrect login. After several tries (to ensure I didn't mistype the password), I logged in as myself. Same problem. I tried the su command, with the correct password, and it said it couldn't authorise it.
After a lengthy conversation with a friend of mine who was very good with computers, he basically summarised that he had no clue, but that his best guess would be a virus. Upon running the Linux installer, I found the Repair option. Not being particularly familiar with Linux, I used it simply to backup my important files onto a flash drive. I then tried running the Install option, in an attempt to simply write over my existing Linux and make it new again. The installer, however, consistently froze up when trying to start the partitioner, on the "Checking disks..." stage. I figured it was a problem with my partition. In my naivete, I simply used the Windows tools to clear that partition... It destroyed GRUB too, so I couldn't run any OS. I figured my computer was pretty well screwed, and at that point just decided to bring it into the shop and have them completely wipe it.
my computer was backed up onto an external hard driven I brought it back, I reinstalled Windows. Upon restart, it said that it was still looking for GRUB, which made no sense to me. After messing around with it a bit, I decided to just reinstall Linux too. To my lack of surprise, that fixed the problem. Both OS' now ran just fine. The first thing I did on Debian was to install the Clam Anti-Virus, which I understood to be one of the best Linux anti-viruses. However, within about 10 hours, got the same problem as originally. I wasn't doing any of the same things, and between the lack of consistency in activities and the fact that I had an anti-virus running,figured it wasn't a virus. Not knowing what to do, I just left it and have been using Windows since.
View 8 Replies
View Related
Mar 25, 2010
Having read on the forums about some of the dangers of running Wireshark as root, I would like to know if anyone can suggest some alternative packet sniffers/network analyzers which will offer similar results but without the security issues. I am using Karmic Koala on a Fujitsu Siemens laptop with wireless router (firewall enabled)
View 7 Replies
View Related
Sep 8, 2010
Whenever I login as root, an e-mail with the subject "Security information" is sent outwhere the e-mail address for this message is configured? I need to change it (or perhaps disable it).
View 9 Replies
View Related
Oct 20, 2010
I found this on Bee's website. For more info on this exploit there are links there:[URl]..All you have to do in Fedora 13 is enter the following lines in a shell as normal user:
[Code]...
I don't think this can be considered solely an "upstream" problem, because I first tried it in Arch using the same version of glibc, and the final command causes both gnome-terminal and xterm windows to disappear.
View 14 Replies
View Related
Jan 15, 2010
I am using mint 8 for a 2 weeks, I am noob to linux but I like Mint than any other linux distro which is great alternative to windows. I have a problem regarding password reseting.
1. My laptop automatically get logged in without asking user name and password.
2. I tried to change password for newly created user and root user using graphical way but it does not work.
2. I can perform administrator task using only OEM user which is default inbuilt user of mint.
How can make my laptop to ask password when mint get booted? How to change password for other users?
View 1 Replies
View Related
Dec 14, 2010
I'm seeing really bad user login format under a standard installation and am wondering why ubuntu does this as default. I have noticed that the graphical login for gnome sizes itself to accommodate a user's exact password length. This indicates to me that somewhere on the unencrypted part of a standard installation with user encryption contains at least some indication of the content of the password length which seems a security flaw even if not a complete hole, it majorly reduces the number of attempts a cracker would have to cycle through.
And that's assuming that *only* the length is contained. Furthermore it seems that it would be MUCH better to simply display the number of characters entered into the pw field and allowing the gui to expand itself from an fixed size as the field is filled out so the the user still receives visual feedback for entering characters. Either a simple character count display should be entered into the field or a 10 dot to new line so that one can visually quickly count the number enter by multiplying from a 10base graphical observation.
View 9 Replies
View Related
Aug 9, 2010
I've recently installed 64bit version of ubuntu 9.10 but the GDMsetup doesn't seem to be working as it was in 9.04 i mean to say when you type gdmsetup at console the login window pops up where i can check the check-box "Allow local administrator log in" under security tab. to enable login as root. since it is not working i've to type password every time when i install a package or create a folder in root directory or mount a drive which is quite irritating how can i login as root in gui mode etc... also is there some syntax which i can put into /etc/gdm/custom.conf so i can log in as root....
View 2 Replies
View Related
Nov 7, 2010
The Wireshark website specifically warns against running WireShark as Root....
Quote:
Administrator/root account not required!
Many Wireshark users think that Wireshark requires a root/Administrator account to work with.
That's not a good idea, as using a root account makes any exploit far more dangerous: a successful exploit will have immediate control of the whole system, compromising it completely.
First of all, most Wireshark functions can always be used with a (probably very limited) user account. In particular, the protocol dissectors which have shown most of the security related bugs do not need a root account!
Only capturing (and gathering capture interface information) may require a root account, but even that can usually be "circumvented", see CaptureSetup/CapturePrivileges for details how to do so.
View 3 Replies
View Related
Apr 22, 2011
Having trouble adding a regular user with ssh access on Hardy 8.04. I can ssh into root, but not into the newly created regular user with the same ~/.ssh/authorized_keys
Code:
sshd_config has:
AllowGroups sshlogin
AllowUsers user root
[code]....
what could be preventing ssh login to ~user? And yes I would like to disable root ssh access, but it would be nice to be able to ssh into user first
View 4 Replies
View Related
Jul 15, 2010
I am a Newbie to Server platform. Just installed Ubuntu 9.04 server, As my Lappy not supporting OEL 4. I was shocked to see that there is no GUI. Anyhow, in that it is showing to Login. I enter the Username and password which was created during Installation on Ubuntu server. It was fine. How to goto Root?
I typed su - root and entered password
Says Authentication failure.
How can I overcome this? While Installation where ever it asks for a password I use the same one.
View 1 Replies
View Related
