Ubuntu Servers :: Deactivate Root Account But Allow Software To Run As Rool?
Jun 23, 2011
I'm setting up a server on a Cloud Server hosting service. When they installed Ubuntu 10.04, they set it up with "root" access. Meaning they created an account called "root" and gave us a password to log in.Of course, I immediately created the admin (sudo) accounts for myself and the other administrator. However, being that we are most familiar with installing 8.04 LTS server on our own hardware, and thus set it up without root, we don't quite know how to get rid of the 'root' login, yet preserve the ability for our scripts and software to still run with root permissions.
I try to use FTP to put new files and catalogs on my server and I always run into problems that I have not the right to create catalogs and files in the named catalogs and so on, it is very annoying.Is there a way around this problem or do I have to activate root account to not run into these problems all the time? I have worked with different UNIX-versions and variants for the last 15 years at least and have always had access to root account, why is it so dangerous to have access to root account in ubuntu?
I've got an old computer around that I've put Ubuntu server 8.04 on.At the moment, this is only a little hobby of mine purely for educational purposes. (Great for learning Linux!) After using this tutorial:URL...for setting up a LAMP-server, I'm trying to figure out is whether or not setting up a root-password is necessary or not. I think the tutorial is really great for a newbie, but it consistently uses su instead of sudo.I'm aware of the fact that setting a root-password isn't recommended in the documentation, but don't you need a root-account to be able to run tools such as webmin?
This may sound a bit odd, but after installing Ubuntu Server 9.10 64-bit version, I can't seem to log in with the root account that I created. My user account works fine. I thought that I may have fat fingered the password when I created it so I ran the installer again since it takes very little time to do so. When creating the new root account password, I was very careful to type it correctly. After the install was complete, I am still unable to use the root account. I'm unable to SU from my normal user account, too. I just receive the Login incorrect error. Is there something with using root accounts with Ubuntu server that I'm missing?
I have installed Fedora Core 11 with SELinux enforcing.It appears (via log files) that if I use a .forward file in the home directory for root that SELinux prevents the use of this mechanism for forwarding e-mail.Is there a way to continue to use SELinux and be able to forward root's e-mail to an outside account?
i am having problems with privileges i have created a new user with my name, but i cant get root privileges on it. i need the same privileges as the root profile.
I've started to get emails that would typically come from [URL] as [URL]. These emails come from services that send out emails (backup programs) directly, or from cronjobs. I've logged in as the non-root account and either sudo su - or su - to root and the restart the service at one point or another. If I login directly as root and bounce the service or cron the emails come across as from root. I don't see anything in my environment variables after I su to indicate what would cause this. I'm not sure where else to look? A pam setting? This seems to have happened between Fedora 10 and 14 (did a bunch of overdue upgrades recently) I've only got Fedora so I don't have anything to compare to. In Fedora 10 I did not have this problem.
I am trying to log into a server with a particular account. Let's say I don't know the password for that account. Can I do this using ssh? I am wondering if it is possible to do it in one command, instead of logging in as root and running su.
A while back I don't know what I did but I messed up my root user account and now the password that I think is supposed to be for the account doesn't work anymore.In an attempt to fix it I rebooted and went into recovery mode and then edited the sudoers file. This appears to have been good enough to be me by but now I'm running into problems installing or changing configurations in gnome. For example, I just installed Asterisk via the terminal the other day and had no problems because I could use sudo. But just now I tried installing Gastman via the Ubuntu Software Center and of course it asked for the root password.I entered my usual root password when I use sudo and it doesn't work.
I then went to the terminal and entered sudo apt-get install gastman and it worked fine becuase I used my sudo password for my account. So it seems I can do things just fine via the terminal but when in gnome it doesn't work. I went into the Users and Groups section in Gnome to attempt to set or change the root password but of course I have to unlock the application which requires the root password.
I'm trying to use my root account for the ftp. Now, he can connect but when i come in the map "home" its empty (in the ftp) but he can't get the information.
Is there a way to grant 'root' privileges to my user account? My account name ... I'll call it 'masterskop' as it is my forum name here, but not on my computer.Would it look like this in the sudoers' file?My purpose is to get access to all the folders and files in the 'File System'. The root and lost+found folders have 'Xs' on them...No access! And for example, under properties of the 'var' folder it states that 'you are not the owner, so you cannot change these permissions.' How can I get access to all of it everytime I login as the main user of my computer? I do not have anyone else using this computer.I did edit this file and used my real user name ... logged out and logged back in and still I do not have access/edit these folders and files.
I recently made a computer for someone who decided to get a new one instead.. so i thought i'd make a server out of it lk i had it before. so i deleted their account (while on their account) and made me an account.. but now when i try to login to my account it's.. not there? such as when i type my username and pass it says i entered an invalid user/pass. any idea how i can get my user accounts back or atleast logon to this system? i know the root password if there's any way i can login under the root account.
Can i login to my server using my root account and create a public+private key for one of my users and then manually paste it into his authorized_keys file and give him the private key?
The user im giving it to has a chrooted FTP account...
Is it still ok that i used the root account to create it? He is not going to have root access or nothing is he? This is not a security breach in any way is it?
The user doesn't have shell access to create their own so this is the only way i can think of doing it...
Also what access should the user have to their .ssh folder + the authorized_keys file...?
Are they allowed to read the key? What about write?
If root is disabled by default, how is it possible that someone managed to SSH into my computer using root? I never enable/set password for root, it's always left as the default as per a fresh install and I always use sudo for any admin tasks.Auth.logFirst there are a whole load of failed attempts then...
Code: Nov 8 11:07:32 Morris-Desktop sshd[3601]: Failed password for root from 94.243.50.53 port 4360 ssh2
I am trying to use a guest account in Ubuntu 10.10 however I am unable to stop the guest account from authenticating as a superuser and gaining root permissions dispite removing all permissions from the user-group control panel. The new guest account I created is not part of the admin group. However, with my new guest account I am unable to start a guest session from the panel, AND if I use the guest session from the panel I dont have the problem with the guest session being able to authenticate. How do I prevent super user authentication from an account in this situation? It seems that any account can authenticate and my /etc/sudoers file looks like this:
# /etc/sudoers # # This file MUST be edited with the 'visudo' command as root. # # See the man page for details on how to write a sudoers file. #
Defaults env_reset # Host alias specification # User alias specification # Cmnd alias specification # User privilege specification root ALL=(ALL) ALL
# Allow members of group sudo to execute any command # (Note that later entries override this, so you might need to move # it further down) %sudo ALL=(ALL) ALL # #includedir /etc/sudoers.d # Members of the admin group may gain root privileges %admin ALL=(ALL) ALL
I came to debian from fedora so there I used ( su - ) to become root user. So my question is that in debian, is it same using ( su ) and ( su - ) or here also using ( su - ) is preferred with slash or without slash. What is the correct and secure way in debian with full root status.
One more question relating gedit sources.list
I use as root account : gedit /etc/apt/sources.list (and then enter and sources file in gedit open)
Is this correct method or any other way as when save after changing entries inside it says error.
I deleted the root line in passwd and shadow and then tried to copy the backup and was able to put it all back to normal from rescue mode. However when i get to my login screen i can not login as root anymore or even after logged in as another user i can not su - or su root, it tells me that root user does not exist......
I have set up my crontab and whilst Im logged in and it works (It runs my shell script), however when Im not logged in, the script does not run. Initially I set the time/date to 0 0 * * * (Midnight every day), as this did not work, I tested it with to 0 * * * * (every hour) whilst logged in and the script starts.
I use crontab -e to set it up under the root account..Im sure you dont have to be logged in for it to run?, but maybe im missing a step or just overdosing on Linux and need a holiday:-)
I want to add a new user. For that purposeI switch to su and give root passwd. There I gave a command " useradd ". [smith@localhost smith]#adduser when i press enter key by typing adduser command it say me "Command not found" .Then i log off from my own account and login again from root account. The command "useradd" is then accepted.is there any way that without logging off from normal user account I may enter my roor accout and work as a root account instead to log off from normal user account.
What file needs to be modified so that Pulseaudio starts automatically when in the root account? Currently, it is necessary to start Pulseaudio from the "Run" dialog when in the root account. I recall there was a file that prevents Pulseaudio from being run as root and that particular line had to be deleted in order for it to work.
I prefer to run my computer from the root account. If not, do not preach about the "dangers" of running as root.
I have a problem in my usb-modem it didn't connect when I use Root account I use : HUAWWI E1550 HSDPA USB Stick System : Ubuntu 9.10 64 bit any one could advice me with the solution I couldn't do with mu root account ??
How do I activate networking? (I am currently logged in from Ubuntu on another computer). I installed Debian Squeeze on an iMac 7.1 (which works perfectly well with ubuntu) from the netinstall CD (today's daily build), and of course I deactivated root login, coming from ubuntu. Now I find I have to enter my root password (login password will not do) to activate networking! Is this a joke? I had the network configured with DHCP during install! So how do I activate the root account, or, more to the point, how do I get by in Debian without activating root login?
