[Comm-en] ALT Server 4.0 - Preventing Root Log-ins

Alexey Rusakov ktirf at altlinux.org
Tue Mar 2 07:46:54 UTC 2010


В Втр, 02/03/2010 в 09:34 +0200, Michael Shigorin пишет:
> On Mon, Mar 01, 2010 at 08:05:44PM -0600, Virtual Sky wrote:
> > How difficult would it be to configure my ALT Server 4.0 box to
> > disallow 'root' user log-ins and only allow a regular user
> > log-in and then 'su' to the root account?
> 
> I'd do something like this to invalidate root password:
> 
> cp -a /etc/tcb/root/shadow /etc/tcb/root/shadow-
> echo 'root:x:14029::::::' > /etc/tcb/root/shadow
> 
> > If easy enough to configure, how does this affect the web
> > browser configurator interface?  Can you specify a regular user
> > as the "administrator" to log in via the web interface?
> 
> AFAIR no.
AFAIK, this is technically possible to login into the web interface with
any valid user, but insufficient permissions handling is inconsistent.
Nothing destructive should happen though, so I'd try, if I were you.

-- 
  Alexey "Ktirf" Rusakov
  GNOME Project
  ALT Linux Team
----------- ��������� ����� -----------
���� ������� �������� �� � ��������� �������...
���     : �����������
���     : application/pgp-signature
������  : 198 ������
��������: ??? ????? ????????? ????????? ???????? ????????
Url     : <http://lists.altlinux.org/pipermail/community-en/attachments/20100302/f7092077/attachment.bin>


More information about the community-en mailing list