|
Home > Archive > Unix administration > October 2004 > Changing root's password
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
| Author |
Changing root's password
|
|
|
| I just noticed on a new Linux system that we got at work that if you
try and change root's password as root, it does not ask you for root's
current password before allowing the new one to be entered. I thought
this might be something with Linux until I realized that our Solaris
servers are the same way. Is there a reason for this? It seems
terribly unsecure. Of course people should be either only logged in
as root when necessary or locking their workstations, but still.
-Ken
| |
| Dave Hinz 2004-10-27, 5:52 pm |
| On Wed, 27 Oct 2004 19:00:01 +0000 (UTC), Ken <nntp@hellrot.org> wrote:
> I just noticed on a new Linux system that we got at work that if you
> try and change root's password as root, it does not ask you for root's
> current password before allowing the new one to be entered. I thought
> this might be something with Linux until I realized that our Solaris
> servers are the same way. Is there a reason for this? It seems
> terribly unsecure.
I'm not sure how it would be insecure if, to be root, you need the password
already.
> Of course people should be either only logged in
> as root when necessary or locking their workstations, but still.
Think of the failure modes, though. In order for this to be a problem,
a sysadmin would have to log in as root and walk away from an unsecured
screen. If they do that, changing of root passwords is the _least_ of
their problems.
sudo is a good way to grant root access without giving out root passwords,
but that wasn't your question.
Dave Hinz
| |
| Lew Pitcher 2004-10-27, 5:52 pm |
| -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Ken wrote:
> I just noticed on a new Linux system that we got at work that if you
> try and change root's password as root, it does not ask you for root's
> current password before allowing the new one to be entered. I thought
> this might be something with Linux until I realized that our Solaris
> servers are the same way. Is there a reason for this? It seems
> terribly unsecure. Of course people should be either only logged in
> as root when necessary or locking their workstations, but still.
As root is already all-powerful, it's difficult to prevent him from
making direct modifications on the password database (/etc/passwd,
/etc/shadow, or the more sophisticated password management systems like
PAM).
Basically, if you have gained root access, then there's no effective
block against root's updating the password, and thus it is redundant and
unnecessary to validate root's current password.
- --
Lew Pitcher, IT Consultant, Enterprise Data Systems
Enterprise Technology Solutions, TD Bank Financial Group
(Opinions expressed here are my own, not my employer's)
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (MingW32)
iD8DBQFBf/ OGagVFX4UWr64RAtsvAJ9hqyGek6CF7TzmX2m6W4
GpKAdmBQCfYAtg
wGegLX1fq9x6oHe5eqClkmY=
=ouAm
-----END PGP SIGNATURE-----
|
|
|
|
|