Announcement

**jankushka** · May 28, 2008, 03:56 AM

Re: Revive the "root" account

in a world of desktops and laptops, sudo is an absolute necessity.
in a server context, of course, you can easily get by without it.
the vast majority of the installations are "personal".
so, it doesn't make much of a difference whether or not you have a root password.
in those contexts where a pc is shared by more than person, though,
i agree that having to enter the root password provides better security.
you can do that with sudo, though, mac-os style...
m2cts.

**lowey23** · May 28, 2008, 04:04 AM

Re: Revive the "root" account

Originally posted by daihard

The main Linux system my wife and I share runs CentOS. She does not know the root password, and she's comfortable with it. That way, both she and I know that if the system gets messed up, it's not her.
What do you guys think?

I think that it's never her fault. How long have you been married? Tell her everything, take the blame, what is the matter with you? Not telling "herself" anything is much worse than any root permission problem you may envisage.

Go out and buy her some flowers. Make dinner. Above all, do not show her this post.

**daihard** · May 28, 2008, 09:56 PM

Re: Revive the "root" account

Originally posted by jankushka

in a world of desktops and laptops, sudo is an absolute necessity.
in a server context, of course, you can easily get by without it.
the vast majority of the installations are "personal".
so, it doesn't make much of a difference whether or not you have a root password.
in those contexts where a pc is shared by more than person, though,
i agree that having to enter the root password provides better security.
you can do that with sudo, though, mac-os style...

Thanks for your comments. You've reminded me that Mac OS X uses the same mechanism. (I activated root on my Tiger, though. LOL)

I still wonder about account creation via CLI. Well, I guess those who resort to "useradd" instead of GUI are expected to know what they're doing...

**Snowhog** · May 28, 2008, 10:00 PM

Re: Revive the "root" account

man useradd in a console, or man:useradd in Konqueror and you'll learn what you need to know.

**daihard** · May 28, 2008, 10:44 PM

Re: Revive the "root" account

Originally posted by Snowhog

man useradd in a console, or man:useradd in Konqueror and you'll learn what you need to know.

I am fairly familiar with "useradd." My concern, as I expressed above, is that creating an account via "useradd" will not add the new user to the "admin" group unless you explicitly choose to via command-line parameters. As the result, the new user will not be able to sudo, and since root is locked, there's no way he/she will be able to perform superuser tasks.

**jankushka** · May 29, 2008, 02:55 AM

Re: Revive the "root" account

Originally posted by daihard

I still wonder about account creation via CLI.
Well, I guess those who resort to "useradd" instead of GUI are expected to know what they're doing...

or use adduser, tailoring its behaviour in /etc/adduser.conf.
that should (hopefully) do what you need.

**kubicle** · May 29, 2008, 10:23 AM

Re: Revive the "root" account

Originally posted by daihard

One issue is that Kubuntu automatically adds a new user (created via its GUI user manager) to the group named "admin,"

Actually, kubuntu shouldn't do that. That is 'add a new user to the admin group automatically with the GUI'. And it doesn't on my machines.

Giving users administrative powers is a task that should be done explicitly, not automatically. By default, out of necessity, the first user created during installation is added to the admin group, but not subsequent users created.

**daihard** · May 29, 2008, 11:51 AM

Re: Revive the "root" account

Originally posted by jankushka

or use adduser, tailoring its behaviour in /etc/adduser.conf.
that should (hopefully) do what you need.

That's great stuff. Thanks! I was wondering how to change the upper UID/GID limits for system users. (My UID is 501 on all other Linux machines at home while by default Kubuntu considers it a system user ID.)

Man, I learn new things every day. 8)

**Snowhog** · May 29, 2008, 01:28 PM

Re: Revive the "root" account

Originally posted by daihard

(My UID is 501 on all other Linux machines at home while by default Kubuntu considers it a system user ID.)

By default, in *ubuntu, only the first user established on the system - the one who did the installation - is part of the admin group. Any other user that is added and that you want to be able to function with sudo privleges, must be explicitly added to this group.

**daihard** · May 29, 2008, 04:07 PM

Re: Revive the "root" account

Originally posted by Snowhog

Originally posted by daihard

(My UID is 501 on all other Linux machines at home while by default Kubuntu considers it a system user ID.)

By default, in *ubuntu, only the first user established on the system - the one who did the installation - is part of the admin group. Any other user that is added and that you want to be able to function with sudo privleges, must be explicitly added to this group.

Kubicle mentioned that as well. That's obviously my misunderstanding.

However, that has nothing to do with what Ubuntu / Kubuntu considers system user/group IDs. If you create a new user using its system settings tool, it will try to assign a user ID above 1000. In order to display "system" users/groups, you will need to check "show system user/group" checkboxes.

**kbunt** · Sep 06, 2008, 10:47 PM

Re: Revive the "root" account

I don't really like the sudo system. I think this would be the best feature Ubuntu/Kubuntu could add and that is the option of using either sudo or the traditional 'su' (su or root account). Why isn't this implemented? I think more people would give one of the *ubuntus a chance.

I know I started branching off to other Debian-based distros which didn't use sudo. I got tired of always having to type 'sudo' after 'su' didn't work. In addition, I sometimes get help with Linux problems and some of my helpers are not sudo/Ubuntu fans so...

**kubicle** · Sep 06, 2008, 11:25 PM

Re: Revive the "root" account

Originally posted by kbunt

I think this would be the best feature Ubuntu/Kubuntu could add and that is the option of using either sudo or the traditional 'su' (su or root account).Why isn't this implemented?

Do you mean during installation? One can revive the normal root account fairly easily after installation (although it's not recommended).

I got tired of always having to type 'sudo' after 'su' didn't work. In addition, I sometimes get help with Linux problems and some of my helpers are not sudo/Ubuntu fans so...

You can use 'sudo -i' command instead of 'su' to get a root shell, and if you like, you can create an alias for su -> sudo -i and use 'su' just the same as with a root account.

Code:

alias su='sudo -i'

in your ~/.bashrc should do the trick (after starting a new shell or resourcing .bashrc)

Note: 'Safer' way would be to use a different alias like:

Code:

alias sus='sudo -i'

As su and sudo's additional options are not necessarily compatible

**Edward78** · Sep 12, 2008, 10:26 AM

Re: Revive the "root" account

I hate it, I used SuSE/OpenSuSE for you & the root system used in that never bothered me, I like it alot better really, I unlocked root here, but the GUI apps. won't take the new root pass.

**Corn Flake** · Sep 12, 2008, 02:14 PM

Re: Revive the "root" account

Originally posted by Edward78

I hate it, I used SuSE/OpenSuSE for you & the root system used in that never bothered me, I like it alot better really, I unlocked root here, but the GUI apps. won't take the new root pass.

On Kubuntu, kdesu is a symlink to kdesudo. To restore the traditional kdesu do this as root:
rm /usr/bin/kdesu
ln -s /usr/bin/kdesu.distrib /usr/bin/kdesu

Announcement

Revive the "root" account

Revive the "root" account

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment

Comment