LinuxSA Mailing list archives

  From: Andrew Halliday <andrew@recalldesign.com>
  To  : <linuxsa@linuxsa.org.au>
  Date: Mon, 29 Jan 2001 09:48:14 +1030

Changing the root user

This is a multi-part message in MIME format.

------=_NextPart_000_003B_01C089D8.99501F00
Content-Type: text/plain;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

Okay, heres an interesting proposition that may prove quite =
controversial but I just want to see how possible it is first.

When I was thinking about protecting my little naked linux box on the =
big fat Internet and about all those people trying to hack root - it was =
daunting.  Then I thought - "So what if they hacked root and root wasnt =
the root user?".

So my question is: is there any way to change WHO the root user is?  I =
mean, I cant see that linux would be coded in such a way that this would =
be unretrenchably embedded in the system, since thats a bad coding =
ethic...however I can forsee that because root is an exceptional user, =
there will be certain exceptions all over the place.

But just imagine it : someone living in the depths of Russia or =
something, after having spent too much time on hacking my box FINALLY =
gets root...only to discover that root has the eqivalent access =
permissions of nobody and that this user called 'fred' or =
'sakjfhsdfgldfgkdfjgkdgskdjfhgdkjfhgadfkjhgaf' is the super-user!!!

-then again, i spose once they have shell access youre prettey much =
stuffed anyway?

Thoughts anyone?

AndrewH

------=_NextPart_000_003B_01C089D8.99501F00
Content-Type: text/html;
	charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<HTML><HEAD>
<META http-equiv=3DContent-Type content=3D"text/html; =
charset=3Diso-8859-1">
<META content=3D"MSHTML 5.50.4522.1800" name=3DGENERATOR>
<STYLE></STYLE>
</HEAD>
<BODY bgColor=3D#ffffff>
<DIV><FONT face=3DArial size=3D2>Okay, heres an interesting proposition =
that may=20
prove quite controversial but I just want to see how possible it is=20
first.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>When I was thinking about protecting my =
little=20
naked linux box on the big fat Internet and about all those people =
trying to=20
hack root - it was daunting.  Then I thought - "So what if they =
hacked root=20
and root wasnt the root user?".</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>So my question is: is there any =
way to change=20
WHO the root user is?  I mean, I cant see that linux would be coded =
in=20
such a way that this would be unretrenchably embedded in the =
system, since=20
thats a bad coding ethic...however I can forsee that because root is an=20
exceptional user, there will be certain exceptions all over the=20
place.</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>But just imagine it : someone living in =
the depths=20
of Russia or something, after having spent too much time on hacking my =
box=20
FINALLY gets root...only to discover that root has the eqivalent access=20
permissions of nobody and that this user called 'fred' or=20
'sakjfhsdfgldfgkdfjgkdgskdjfhgdkjfhgadfkjhgaf' is the =
super-user!!!</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>-then again, i spose once they have =
shell access=20
youre prettey much stuffed anyway?</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>Thoughts anyone?</FONT></DIV>
<DIV><FONT face=3DArial size=3D2></FONT> </DIV>
<DIV><FONT face=3DArial size=3D2>AndrewH</FONT></DIV></BODY></HTML>

------=_NextPart_000_003B_01C089D8.99501F00--

-- 
LinuxSA WWW: http://www.linuxsa.org.au/  IRC: #linuxsa on irc.linux.org.au
To unsubscribe from the LinuxSA list:
  mail linuxsa-request@linuxsa.org.au with "unsubscribe" as the subject