Re: changing root account name

From: Michael H. Warfield (mhw@wittsend.com)
Date: 10/31/01 

Date: Wed, 31 Oct 2001 14:07:13 -0500
From: "Michael H. Warfield" <mhw@wittsend.com>
To: Gaz Wilson <dragon@linux2.nccnet.co.uk>
Subject: Re: changing root account name
Message-ID: <20011031140713.A14005@alcove.wittsend.com>

On Wed, Oct 31, 2001 at 06:42:13PM +0000, Gaz Wilson wrote:
> > On Tue, Oct 30, 2001 at 10:12:34AM -0500, Kurt Yoder wrote:
> >
> > > Would there be any benefit in changing the account name of "root"? For
> > > instance, I could change the uid 0 account to have the name "foobar".
> > > Then, if someone were trying to break into the root account, they would
> > > have an additional step; instead of logging in as root, they'd first
> > > have to find out what the uid 0 account was called.
> >
> > less /etc/passwd | grep "0:0"

> In fact correct me if I'm wrong, but lots of Unices simply expect the
> superuser account to be the first line in the passwd file? I seem
> to remember reasing something about it years ago?

        None, that I'm aware of and I go back to the AT&T release 3 days.
The password file is totally order independent.

> So if that's the case, as any user:

> head -n 1 /etc/passwd

> Would work every time! the example above ending in "grep 0:0" wouldn't
> necesarilly work, for instance, root on Solaris looks thus:

        Would generally work every time but only by the quirk of fate that
root is always the first account created (or at the top of the initially
installed password file) and adding accounts only appends to the file.

> root:x:0:1:Super-User:/:/bin/sh

> Gaz

> --
> _ _ _a' /( <. # DragonLord - above all expectations
> /_/ _ _/ / ` / _ ~~ _}\ \( _ ) # E-Mail: dragon@linux2.nccnet.co.uk
> / \ /_'/_/ /_, / /_||/|/ \(,_(,)' # Info: www.dragons.org.uk/redclaw.html
> Catch me with the Dragons.. ._>, _>, # Chat: http://www.redclaw.org.uk/

        Mike 

-- 
 Michael H. Warfield    |  (770) 985-6132   |  mhw@WittsEnd.com
  /\/\|=mhw=|\/\/       |  (678) 463-0932   |  http://www.wittsend.com/mhw/
  NIC whois:  MHW9      |  An optimist believes we live in the best of all
 PGP Key: 0xDF1DD471    |  possible worlds.  A pessimist is sure of it!

Relevant Pages

  • RE: Root account desactivated
    ... the system replies that the account is not currently available. ... > password but having the root account disabled can we reactivate ... > Ethical Hacking at the InfoSec Institute. ... > pen testing experience in our state of the art hacking lab. ...
    (Security-Basics)
  • Re: Ubuntu cripple root user
    ... > cripple root account, but I prefer to do it with other accounts. ... > don't know what's going with "sudo" thing. ...
    (alt.linux)
  • Re: login problem
    ... Sounds like you are logged into your account and are setting at the ... Try the command ls -al ... Login to the root account, bring up the window manager, ...
    (alt.linux)
  • Re: KDE crashes for 1 user but not the others?
    ... > and use KDE and Gnome. ... > A few days ago KDE under root account wouldn't start. ... The root account resides on the root partition which is deliberately ... Monsters such as KDE and Gnome are not suitable for running ...
    (freebsd-questions)
  • Ubuntu cripple root user
    ... cripple root account, but I prefer to do it with other accounts. ... do Administration once I logged on as a root user. ...
    (alt.linux)