Secure my root shell

Post Reply
wizzofozz
Posts: 1
Joined: Sat Feb 13, 2010 12:54 pm

Secure my root shell

Post by wizzofozz » Sat Feb 13, 2010 1:04 pm

Hi all,

I've got a rootshell on my internet space by making the daapd copying /etc/shadow back and forth.
Anyways, now that I replaced the * by my own hash in /etc/shadow, I'm wondering whether there are watchdog processes installed on the internet space which might try to revert changes. For example during boot or shutdown.
Anyone has any info on this?
I've seen that cron runs update checkers. Is it safe to disable these?

thx,
ozz

fulbanu007
Posts: 1
Joined: Tue May 25, 2010 12:58 pm

Re: Secure my root shell

Post by fulbanu007 » Tue May 25, 2010 1:15 pm

I and my fellow administrators are forced to address -once again - why root's shell is /sbin/sh, and the ramifications of
changing it. I've read the Sun-Manager's and comp.unix.solaris FAQs andhave tried to reason with our users to no avail.
DON'T Change the root shell. Add a user called "rook" with /bin/kshand a uid of 0. Then tell people to su - rook instead of "su" andthey'll have all the powers of root w/ the shell they want. And youavoid any fallout ramifications of screwing around w/ the root shelland dynamic linking and single user root access, etc.




Lexus IS350 Parts

Post Reply