Re: [SLUG] WAS about Linux virii

From: james martinez (jmarti16@tampabay.rr.com)
Date: Thu Feb 14 2002 - 01:27:41 EST


I read something like this in a book don't remember what one. But you just
create another user account with whatever name you want and give it super
user rights. Then with that account remove the super user rights from root. I
believe it was something like that.

On Wednesday 13 February 2002 19:31, you wrote:
> Someone said:
> > . . . don't run as root if you can help it.
>
> snip
>
>
> I can't think of why logging in as root is a security problem,
> if you are logged in as `Joe', that doesn't prevent a Trojan
> ho
> rse from sending your password to a guy named Lu (in China)
> that tenets into an open port and logs in as root and E-mail
> your private thoughts to him. (or what ever)
>
> What has bothered me from my start is:
> I know the name of the super user on your box, everyone
> does.
> That seems to me to make security twice as hard as it needs to be.
>
> Does anyone know of a way to have a name other than `root'
> being the super user? (In LINUX.)
> (I would also want to hide his directory among all `normal' users)
>
> 73 (= Best Regards) de: Ron ka4inm@tampabay.rr.com
> 100% LINUX, 100% of the time. SENT Time and Date are UTC
> Visit my HAM Web SITE at: http://www.qsl.net/ka4inm



This archive was generated by hypermail 2.1.3 : Fri Aug 01 2014 - 16:04:35 EDT