Home page logo
/

basics logo Security Basics mailing list archives

Re: Multiple login accounts with root privileges
From: "Gleb Paharenko" <gpaharenko () gmail com>
Date: Mon, 7 Apr 2008 19:53:24 +0300

Hi.

Is there some kind of Unix as firmware of client? Than you should search for
passwd file and check which users has id=0.

Regarding your questions about users with root privileges - it should
so much users
as it needed with different logins and passwords. When several
administrators need an access to box, it is better to create personal
admins accounts and not force them to share same login and password.

2008/4/7, ganesh mahadevan <ganesh.was.mahadevan () gmail com>:
Hi,

 I was testing a thin client box and found that I could login as Root,
 Administrator and Admin (all with the same password).  whoami
 indicated 'root' in all three cases.  Is this some sort of aliasing
 going on? I may not be entirely correct on this but shouldn't the
 number of users with root privileges be restricted?  What is your
 advice on this issue?

 Thanks in advance.


 Ganesh



-- 
Best regards.
Gleb Pakharenko.
http://gpaharenko.livejournal.com


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]
AlienVault