D&C GLug - Home Page

[ Date Index ] [ Thread Index ] [ <= Previous by date / thread ] [ Next by date / thread => ]

Re: [LUG] Security Thoughts


On 30/03/17 08:50, Neil via list wrote:
> With all that is happening about surveillance and back doors in
> programs etcetera, recently I am getting more and more concerned about
> security.
> I, my wife and daughter all use Linux. We are each the only user on
> our own machines. When we log on the password we use is also the one
> to use with sudo to become root. (We all use Xubuntu.) This has long
> seemed to me to be a weakness in our security.
> So I am wondering, wouldn't it be safer to have a separate root
> password, different from the log on one? Then if someone, for whatever
> reason, gets to know our log on password, they would not also have our
> sudo password.
> So, is that a good idea? Is is easy to do? Is it even possible? Any
> thoughts/comments from anyone on the list?
> Just wondering,
> Neil
I don't think ubuntu based distributions use the root / user system, 
the first user you create is set to administrator, so basically added to
the sudo(ers) list so you can use sudo.

You can add additional users and set these to normal user accounts and
then have a specific account for administration.

Debian uses the root / user system and you can also add users to the
sudo(ers) list and group to carry out admin tasks by pre-fixing commands
with sudo.

i think the su command may still work, from, a normal account so perhaps
do this,  I am not sure there is really that much to worry about.


The Mailing List for the Devon & Cornwall LUG
FAQ: http://www.dcglug.org.uk/listfaq