Fort Worth Linux Users Group Discussion Board

[aaron_fowler]

In knoppix when the login screen pops up (when I turn on my computer) I type in root and my password but it says I can't login as root so I have to go into a plain text mode (prompt) can I be root in a normal mode? another way I can be root is konsole but I am root only in that program.

[Randy]

I haven't played around with Knoppix in awhile. So, if any knows any different, please post!

Are you booting from the Live CD or are you booting a PC? I'm not sure if this works in Knoppix (it does with Fedora)... If booting from a PC, you can try appending `single` to the end of the boot line and it will take you into single-user mode. You can change the root password from there.

If you're booting from the Live CD, I believe the password is scrambled each time. You can do CTL-ALT-Fx (where x is 1 through 6) and you will be in a root console. From there, you can change root's password using `passwd`. However, the changed password will only be good for that session. Once you reboot, the change is gone.

[aaron_fowler]

I am booting from my pc I don't quite understand what you mean when you say append single to the end of the boot line but I don't think the password is my problem I know what it is just not how to login as root otherwise.

[Randy]

OK... don't worry about the other stuff.

There are a couple of ways... However, you really shouldn't be logging in as root as your initial session - meaning the graphical login from xdm/gdm/kdm.

You should log in with your normal user ID. Then you can switch to root to do maintenance on the system.

First way, open a terminal window and type

Code: Select all

su -

Enter root's password when prompted.

Second way if you can't `su` directly is to use `sudo`, like this

Code: Select all

sudo su -

Enter your password (not root's password) when prompted.

At some point, you should see a prompt that looks like this:

Code: Select all

[root@jupiter ~]#

See if that works - remember, you don't want to use the root account for anything other than maintenance tasks. It's not meant to be used as a regular user account.

[slackrog]

"you really shouldn't be logging in as root as your initial session"

Okay, I'm on one PC, fully firewalled, with no sensitive data whatsoever. Basically, a test vehicle. Why is it so wrong to want to stay as root? I can't count how many distros don't even give this as an option! Is this open source or what? I've got two words that better describe it-paranoia and condescension. I may be a n00b in the OSS world, but it should be my choice to fcuk up, not Ubuntu's. Isn't it my right to perpetually be root if I want, after all?

[Davemon]

I am sad to see the way the internet is nowadays.

One of the biggest problems is compromised PC's that are used in bot armies to do DDOS. (Distributed Denial of Service attacks)

Sure, you may not have any important data on your system, but illegal stuff could be put on your system or your system could be used as a bypass as someone leapfrogs from system to system, hiding behind multiple IP's to attack someone somewhere else.

In some court cases, some people are claiming child porn was placed on their PC.
Who knows? They could be child porn scumbags OR maybe they are innocent schmucks who didn't know how to keep their system disinfected.


Sure, Linux is much more secure, for now and maybe always, but why enhance your risks?


Davemon

[Randy]

"you really shouldn't be logging in as root as your initial session"

Okay, I'm on one PC, fully firewalled, with no sensitive data whatsoever. Basically, a test vehicle. Why is it so wrong to want to stay as root? I can't count how many distros don't even give this as an option! Is this open source or what? I've got two words that better describe it-paranoia and condescension. I may be a n00b in the OSS world, but it should be my choice to fcuk up, not Ubuntu's. Isn't it my right to perpetually be root if I want, after all?

Sure it's open-source - But it has nothing to do with "paranoia and condescension" as it has to do with proper system security.

Case in point...

From http://www.nic.com/~dave/SecurityAdminG ... html#ss2.2

2.5 Why Do We Need Security?

"In the ever-changing world of global data communications, inexpensive Internet connections, and fast-paced software development, security is becoming more and more of an issue. Security is now a basic requirement because global computing is inherently insecure. As your data goes from point A to point B on the Internet, for example, it may pass through several other points along the way, giving other users the opportunity to intercept, and even alter, your data. Even other users on your system may maliciously transform your data into something you did not intend. Unauthorized access to your system may be obtained by intruders, also known as ``crackers'', who then use advanced knowledge to impersonate you, steal information from you, or even deny you access to your own resources. If you're still wondering what the difference is between a ``Hacker'' and a ``Cracker'', see Eric Raymond's document, ``How to Become A Hacker'', available at http://sagan.earthspace.net/~esr/faqs/hacker-howto.html.

While it's unlikely, your firewalled PC still has the potential to be compromised. This is why services like telnet and ftp that send usernames and passwords in clear text are being replaced with secure replaces like ssh, scp, and sftp.

If I can alter a packet destined to/from your PC, I can gain access - one way or another. Read up on "man-in-the-middle" attacks, if you're interested.