Administrative access on linux systems

Tux magazine has a comparison of su and sudo as ways to administer a linux system. Many people are under the mistaken impression that you just login as root (gui or otherwise) and that’s the only way to do it. In fact, I’ve used su primarily. Although in some circumstance sudo has it’s benefits.

su allows you to become another user. So, simply typing su with no username afterwards will assume you want to become the administrator (root) (or superuser). It prompts you for the root password and then you have full root access.

(Type su – (with a space and then a hyphen) to change your environment to that of the user you’re becoming.)

sudo on the other hand is a more controlled way of accessing this. Let’s say you have a dozen uses on a system and two are allowed to administer certain specific areas. With sudo you (the real administrator) can add their names to the sudo list and configure specific permissions (what are THEY allowed to do. For instance, it’s possible to allow them to restart services, but not install softare, or vice versa.

If you’re on the sudo list, you type sudo at the prompt and are asked for YOUR password. (Not the root password). After the authentication (used to protect against just anyone walking over to your open session and taking root access), you’re able to act as root (to the extent that you’re allowed to in /etc/sudoers). It’s possible to give someone unrestricted sudo access as well. Typically the sudo command gives you access for about 10 minutes without needing to enter your password each and every time.

There are ways within the GUI of running commands as another user and prompting for su (or sudo) password, so this is not a Command line only trick. For instance under Mandrake, when trying to run the control panel you’re prompted for the administrator (root) password. This is essentially a su to root for the purposes of administering the machine.

Related Posts

Blog Traffic Exchange Related Posts
  • Linux Local kernel vulnerability SANS has a story on another local kernel vulnerability for linux. I've got to say that I typically haven't looked as much at "local" vulnerabilities on this site as I have talked about remote vulnerabilities. Usually local vulnerabilities are flaws that allow a user that's already logged into a system......
  • Sandbox your browser on a linux system While I was reading about browser sandboxing coming up in Vista and musing about how easy or difficult it would be to sandbox OTHER 3rd party applications, I found a comment on a ZDNet post that I think I'll just copy directly (of course, giving credit to the poster...) Of......
  • Running windows applications directly in linux has a good explanation of using binfmt_misc to directly launch a windows (or java or python) application just by typing in the application name. *(without all the contortions of ... /home/user/bin/wine /home/user/.wine/c_drive/Program\ Files/Really\ Neat\ Software/Program.exe ) You do have to make the app executable under linux (chmod 755) and......
Blog Traffic Exchange Related Websites
  • What You Need From a WordPress Hosting Company Wordpress has taken over the world of websites and blogs, creating a simple and easy way for individuals get information out into the world of the Internet. The system gives users an incredibly easy platform to create the blogs, information, and news sites that they need to be successful. The......
  • How to Learn More about Paper Money Image There are different things that you want to do whenever you are collecting currency. Among the different things that you want to do is to make sure that you are getting the right choices for your collection. The main thing to make sure of is that you are getting exactly......
  • An A-Z Index of the Bash command line for Linux From   adduser Add a user to the system addgroup Add a group to the system alias Create an alias • apropos Search Help manual pages (man -k) apt-get Search for and install software packages (Debian/Ubuntu) aptitude Search for and install software packages (Debian/Ubuntu) aspell Spell Checker awk Find......    Send article as PDF   

Similar Posts

See what happened this day in history from either BBC Wikipedia
Amazon Logo

Comments are closed.

Switch to our mobile site