Slashdot Mirror

← Back to Stories (view on slashdot.org)

Root 101 - Concept of Root for Newbies

Posted by timothy on from the to-bookmark-for-friends dept.

Fozz writes "One of my colleagues wrote this article explaining the concept of root/super user for Unix newbies. He wrote it after looking for information like it and not finding much. His analogy of Unix and an apartment complex is one of the best metaphors I've seen for understanding multi-user OSes." If you're running any variety of Unix, you've probably been forced to learn this pretty well already, but this is a very lucid explanation to point out to curious friends / co-workers who aren't so sure.

9 of 110 comments (clear)

  1. misleading capabilites of root by teridon · · Score: 4, Informative

    The article says that only root can "Start and stop background processes". Any user can do that, but only root can start and stop processes belonging to other users. Perhaps that is what he meant?

    --
    I hold it, that a little rebellion, now and then, is a good thing. -- Thomas Jefferson
  2. MacOS is simpler than that by andfarm · · Score: 2, Informative

    You don't really need to restart your machine to set up the root account under OS X... there's a menu option in one of the NetInfo configuration apps to "Enable root account". Much easier than rebooting the machine, heh.

    --

    TANSTAAFI: There Ain't No Such Thing As A Free iPod.

    1. Re:MacOS is simpler than that by milkman_matt · · Score: 2, Informative
      You don't really need to restart your machine to set up the root account under OS X... there's a menu option in one of the NetInfo configuration apps to "Enable root account".

      Not to spin off-topic or anything, but it's actually easier than that.. open a terminal with an administrative account and type "sudo passwd root" set root's passwd, then su up and party.

      -matt

  3. Re:CLI by Anonymous Coward · · Score: 2, Informative

    the 'netsh' command in Windows will give you the equivelant functionality of ifconfig at the command-line. you can run it in interactive and script modes, too. the downside is that it's slower than ifconfig; the upside is that changes made here are permanent, whereas command-line changes in ifconfig don't persist across reboots.

  4. Re:Making a master key by skookum · · Score: 2, Informative

    By the way, that paper (referenced in Schneier's last Crypto-Gram) about privelege escalation with physical pin tumbler locks is here.

  5. Re: Age of Mythology by MeanMF · · Score: 2, Informative

    One thing that would be nice would be some sort of suid functionality, so I could tag a file to always run as a certain user no matter who it was executed by. That way I could selectively trust certain applications

    I think you can do this (on XP) with the RUNAS command.. Something like:

    runas /user:administrator /savecred <program>

    Throw that into a shortcut, enter the password once, and you're all set. Don't ask me where it's storing that password though.....

  6. This article has been updated by haoledave · · Score: 2, Informative

    Just wanted to let everybody know that the "Root 101" article has been updated on the Iodynamics site. Most of the revisions are based on the comments above.

    I appreciate all of the great feedback, both here and via e-mail. This article has truly been a community effort.

    --Dave
  7. Re: Age of Mythology by MeanMF · · Score: 2, Informative

    You can't use the "Run As" option on the shortct properties.. You have to use the command-line RunAs.exe utility with the /savecred parameter every time you're launching the application. So you might do something like:

    runas /user:administrator /savecred "c:\program files\Internet Explorer\iexplore.exe"

    The first time it would prompt you, but after that it would just load. You have to put that whole command line into a shortcut if you want to launch it from an icon or the start menu. You can nest quotes inside the command line with a backslash - I use this on a shortcut to launch the ISA administration console:

    runas.exe /user:domain\administrator /savecred "c:\windows\system32\mmc.exe \"C:\Program Files\Microsoft ISA Server\MSISA.MSC\""

  8. Re:CLI - Resource Kit = wonderful by Whizzmo2 · · Score: 2, Informative
    Yes, you *can* admin a win2k domain from the command line. Even if you don't write in perl or {insert scripting lang here}, you have the resource kit available to you for all sorts of remote admin tasks.

    A couple of links:


    Hope this helps :)