Additionally, each time a user should no longer use the root account (for example, an employee leaves), the system administrator will have to change the root password. In this tutorial, we discuss the difference between using sudo alone and involving su when elevating to a superuser shell. Two common methods involve the use of sudo, but one also leverages the standard su. Provide too much power for inexperienced users, who could unintentionally damage the system. Introduction Different ways exist for switching to a superuser shell session. It's not good practice to have numerous people knowing and using the root password because when logged in as root, you can do anything to the system. Lnh su chuyn sang siêu ngi dùng - hoc ngi dùng root - khi bn thc thi nó mà không có tùy chn b sung. Using su creates security hazards, is potentially dangerous, and requires more administrative maintenance. To do so, press Ctrl-d or type exit at the command prompt. If you supply a user, you will be logged in as that account until you exit it. In either case, you'll be prompted for the password associated with the account for which you're trying to run the command. The user feature is optional if you don't provide a user, the su command defaults to the root account, which in Unix is the system administrator account. Replace user with the name of the account which you'd like to run the commands as. To switch users before running many commands, enter: su user Replace user with the name of the account which you'd like to run the command as, and command with the command you need to run as another user. To use the su command on a per-command basis, enter: su user -c command The su command allows you to become another user. For more information about the sudo command, visit A. The sudo command also makes it easier to practice the principle of least privilege (PoLP), which is a computer security concept that helps control system access and potential system exploits and compromises. Replace command with the command for which you want to use sudo. To use the sudo command, at the command prompt, enter: sudo command It also logs all commands and arguments so there is a record of who used it for what, and when. From the sudo man page it would seem these are equivalent but they clearly are not. I then noticed that he became root via sudo su - whereas I used sudo -i. Using the sudoers file, system administrators can give certain users or groups access to some or all commands without those users having to know the root password. In a shared environment I noticed my PATH was different from a colleague in that he has /usr/local/bin included and I did not. 1) switches from the current directory to the home directory of the new user (e.g., to /root in the case of the root user) by. It prompts you for your personal password and confirms your request to execute a command by checking a file, called sudoers, which the system administrator configures. The difference between '-' and 'no hyphen' is that the latter keeps your existing environment (variables, etc) the former creates a new environment (with the settings of the actual user, not your own). The sudo command allows you to run programs with the security privileges of another user (by default, as the superuser). The Unix commands sudo and su allow access to other commands as a different user.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |