Root login

English Install/Boot/Login
1

I know that you should not login as root.
But I am wondering why opensuse is to my knowledge they only distro that make it very easy to login as
root.
In the distros I know of root login is disabled.
Or you have to use very specific way to login as root
So they make you very much aware what you are doing
I know it is matter of policy.
dobby9

2

> I know that you should not login as root.
> But I am wondering why opensuse is to my knowledge they only distro
> that make it very easy to login as
> root.

yep! i wonder that too…what WERE they thinking???

i don’t know who made that decision, but i’d bet it is the same
person(s) who made the decision to have the root password DEFAULT to
be the same as the installing user…

and, i’d not be at all surprised to learn that that person(s) has 10
times the experience in Windows[tm] as i do…and, more there than in
any *nix variant…

fact is, i’d not be surprised to learn s/he is on a payroll based in
Redmond.


DenverD (Linux Counter 282315) via NNTP, Thunderbird 2.0.0.14, KDE
3.5.7, SUSE Linux 10.3, 2.6.22.18-0.2-default #1 SMP i686 athlon

3

dobby9 wrote:

>
> I know that you should not login as root.
> But I am wondering why opensuse is to my knowledge they only distro
> that make it very easy to login as
> root.
> In the distros I know of root login is disabled.
> Or you have to use very specific way to login as root
> So they make you very much aware what you are doing
> I know it is matter of policy.
> dobby9
>
>
Most distros I have used except for *buntu allows you to log in as root the
same way openSUSE does by just using the username root and supplying the
password. I don’t see how that is any different/less secure than the other
distros.

4

Try Mandriva 2008 Spring than you get message root login not allowed.In a running system
End of story.
Fedora 8 give at least the warning you,re trying to log in as privilege user , you should not do so.
Opensuse no warning at all except root desktop
dobby9

5

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Same here… gentoo, slackware, debian, suse, fedora… all of these
work the same way or did the last time I installed them. I don’t see a
huge difference, personally, between being able to login as ‘root’
directly and having ‘sudo’ setup to your account automatically. Either
way you’re running with root privileges. There are times for that, of
course, but in general it should be avoided. I guess perhaps for people
who only live in GUI-land it seems easier to login with ‘root’ on some
distros than others but either way you’re either using those privileges
or you aren’t.

Good luck.

69_rs_ss wrote:
> dobby9 wrote:
>
>> I know that you should not login as root.
>> But I am wondering why opensuse is to my knowledge they only distro
>> that make it very easy to login as
>> root.
>> In the distros I know of root login is disabled.
>> Or you have to use very specific way to login as root
>> So they make you very much aware what you are doing
>> I know it is matter of policy.
>> dobby9
>>
>>
> Most distros I have used except for *buntu allows you to log in as root the
> same way openSUSE does by just using the username root and supplying the
> password. I don’t see how that is any different/less secure than the other
> distros.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFI0mw83s42bA80+9kRAoHTAJ0ZgaKPbLG8R+dgY7+3y0KG1rQmRACdFpqo
rUC7e9T9taUDWdhe3g5tqe4=
=6Is+
-----END PGP SIGNATURE-----

6

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Also in opensuse 11 (if not before) the ‘root’ user’s terminal now uses
red text by default, which I think is a good way of alerting the user
they are running with privileges quickly. On the GUI side while the
‘root’ login to X may be something to be disabled I’m really not sure
it’s a big deal. For a new user to Linux they’re going to remember
setting up their username/password and will use that username just like
in other OS’s (like windows… nobody logs in as ‘Administrator’). For
those used to Linux, well, it should be a non-issue. We all know not to
use ‘root’, especially from the GUI, but if needed we could. In the
meantime it doesn’t seem to be a big issue since the biggest use of
‘root’ (installing/updating) is doable from the regular user’s own
interface if they just enter the privileged user’s password once for
patches or installs.

Good luck.

ab@novell.com wrote:
> Same here… gentoo, slackware, debian, suse, fedora… all of these
> work the same way or did the last time I installed them. I don’t see a
> huge difference, personally, between being able to login as ‘root’
> directly and having ‘sudo’ setup to your account automatically. Either
> way you’re running with root privileges. There are times for that, of
> course, but in general it should be avoided. I guess perhaps for people
> who only live in GUI-land it seems easier to login with ‘root’ on some
> distros than others but either way you’re either using those privileges
> or you aren’t.
>
> Good luck.
>
>
>
>
>
> 69_rs_ss wrote:
>> dobby9 wrote:
>
>>> I know that you should not login as root.
>>> But I am wondering why opensuse is to my knowledge they only distro
>>> that make it very easy to login as
>>> root.
>>> In the distros I know of root login is disabled.
>>> Or you have to use very specific way to login as root
>>> So they make you very much aware what you are doing
>>> I know it is matter of policy.
>>> dobby9
>>>
>>>
>> Most distros I have used except for *buntu allows you to log in as root the
>> same way openSUSE does by just using the username root and supplying the
>> password. I don’t see how that is any different/less secure than the other
>> distros.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFI0m0T3s42bA80+9kRAvjyAJ0c7aPcmRtAi66lJuDRT5TF1jNRQwCdHadd
/kJH3b7mbfXAwEqzdtAnFDE=
=SG08
-----END PGP SIGNATURE-----

7

> Most distros I have used except for *buntu allows you to log in as
> root the same way openSUSE does by just using the username root
> and supplying the password. I don’t see how that is any
> different/less secure than the other distros.

perhaps i don’t know what his login screen looks like…but, when i
installed 10.3 suddenly the login screen shows both me (as a normal
user) AND root…i don’t think i’d ever seen that before, anywhere
(but i’ve got limited background, just to Red Hat, Fedora, Mandrake,
Mandrivia, Knoppix, Xandros and others now receeded into the recesses)…

REAL easy for the unknowing to just click on root there and away you
go…

that is what i’m talking WHY make SO easy, to click on root…


see caveat: http://tinyurl.com/6aagco
DenverD (Linux Counter 282315) via NNTP, Thunderbird 2.0.0.14, KDE
3.5.7, SUSE Linux 10.3, 2.6.22.18-0.2-default #1 SMP i686 athlon

8

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hmmmm… that surprises me. A coworker’s OpenSUSE 11 box doesn’t do
this… he uses KDE (kdm window manager) primarily and says that is
configurable, but is not the default. Perhaps this changed between 10.x
and 11.x, or perhaps you are not using kdm (perhaps gdm for Gnome, or
something else entirely). Either way I’m surprised you have seen this.
SLE 10 (SUSE Linux Enterprise) doesn’t do this with Gnome as the
default and SLE is based on OpenSUSE 10.1. Either way, I’m surprised
you see ‘root’ as a clickable option by default.

Good luck.

DenverD wrote:
>> Most distros I have used except for *buntu allows you to log in as
>> root the same way openSUSE does by just using the username root
>> and supplying the password. I don’t see how that is any
>> different/less secure than the other distros.
>
> perhaps i don’t know what his login screen looks like…but, when i
> installed 10.3 suddenly the login screen shows both me (as a normal
> user) AND root…i don’t think i’d ever seen that before, anywhere
> (but i’ve got limited background, just to Red Hat, Fedora, Mandrake,
> Mandrivia, Knoppix, Xandros and others now receeded into the recesses)…
>
> REAL easy for the unknowing to just click on root there and away you
> go…
>
> that is what i’m talking WHY make SO easy, to click on root…
>
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD4DBQFI0nVZ3s42bA80+9kRAhp5AJsFM20vYFj8AXD9XRePali4gnwYSwCWPF8U
09Vhme3PdUqF0VkOt9e/Dw==
=ePC6
-----END PGP SIGNATURE-----

9

ab@novell.com wrote:
> Also in opensuse 11 (if not before) the ‘root’ user’s terminal now
> uses red text by default

hmmmmmm…apparently you think i believe users should never use root…

which is FAR from i’m trying to say (thanks for letting me know just
how UNclear i’ve been to now)…

actually, i’m trying to discourage folks from signing into KDE,
Gnome, or any GUI desktop as root…

instead, i encourage them to ALWAYS log in as a normal user and THEN
use whatever is best for them to exercise root powers (be it sudo, su
-, kdesu or whatever)…

my “problem” is that beginning with 10.3 (i think) the default sign
in screen after a fresh install shows TWO users, one named as the
person who did the install, and the other is root…BAD idea to make
is SO EASY for the uninitiated to log into KDE4.0 as root to
(potentially) wreck havoc…

as always, ymmv

DenverD (Linux Counter 282315) via NNTP, Thunderbird 2.0.0.14, KDE
3.5.7, SUSE Linux 10.3, 2.6.22.18-0.2-default #1 SMP i686 athlon

10

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

No… just trying to hit all points. See other thread for more.

Good luck.

DenverD wrote:
> ab@novell.com wrote:
>> Also in opensuse 11 (if not before) the ‘root’ user’s terminal now
>> uses red text by default
>
> hmmmmmm…apparently you think i believe users should never use root…
>
> which is FAR from i’m trying to say (thanks for letting me know just
> how UNclear i’ve been to now)…
>
> actually, i’m trying to discourage folks from signing into KDE,
> Gnome, or any GUI desktop as root…
>
> instead, i encourage them to ALWAYS log in as a normal user and THEN
> use whatever is best for them to exercise root powers (be it sudo, su
> -, kdesu or whatever)…
>
> my “problem” is that beginning with 10.3 (i think) the default sign
> in screen after a fresh install shows TWO users, one named as the
> person who did the install, and the other is root…BAD idea to make
> is SO EASY for the uninitiated to log into KDE4.0 as root to
> (potentially) wreck havoc…
>
> as always, ymmv
> –
> DenverD (Linux Counter 282315) via NNTP, Thunderbird 2.0.0.14, KDE
> 3.5.7, SUSE Linux 10.3, 2.6.22.18-0.2-default #1 SMP i686 athlon
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.2 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFI0nh63s42bA80+9kRAg86AJ9ijOSWefWqm9wpFedbfnCF7qO7xQCbBlIj
ytLMZdW3U0bPn5Cmldz3WGY=
=QJVL
-----END PGP SIGNATURE-----

11

Does it? I don’t believe I have seen the root user icon at the KDE login screen in any recent version of OpenSUSE. (As expected, there is an option to change this, mentioned in another thread.) But of course one can type root into the username box.

12

Well let me put it this way we are linux users we know the difference between a user and root.
We know our commands and we are not afraid of leaving the GUI and use the CLI or Bash instead
Beside that for me .
Safety First.
dobby9

13

On Thu, 18 Sep 2008 16:36:01 GMT
ken yap <ken_yap@no-mx.forums.opensuse.org> wrote:

>
> DenverD;1872721 Wrote:
> >
> > my “problem” is that beginning with 10.3 (i think) the default sign
> > in screen after a fresh install shows TWO users, one named as the
> > person who did the install, and the other is root…BAD idea to
> > make is SO EASY for the uninitiated to log into KDE4.0 as root to
> > (potentially) wreck havoc…
> >
>
> Does it? I don’t believe I have seen the root user icon at the KDE
> login screen in any recent version of OpenSUSE. (As expected, there is
> an option to change this, mentioned in another thread.) But of course
> one can type root into the username box.
>
>
I haven’t seen that either and on the other side of the spectrum, the
GDM login screen doesn’t even have usernames to choose from by default.

14

well, i do not know how it happened here…but, i installed 10.3 over
10.2 and then one day decided to install Gnome, and change the auto
log in…and then, for the first time in my life it showed me AND
root…i just assumed it was the 10.3 default, 'cause i know i
didn’t set it up that way in any previous SUSE, ever…

shrug…

obviously, if no one else sees it, it is not a problem.


DenverD (Linux Counter 282315) via NNTP, Thunderbird 2.0.0.14, KDE
3.5.7, SUSE Linux 10.3, 2.6.22.18-0.2-default #1 SMP i686 athlon

15

dobby9 schrieb:
> I know that you should not login as root.
> But I am wondering why opensuse is to my knowledge they only distro
> that make it very easy to login as
> root.
> In the distros I know of root login is disabled.
> Or you have to use very specific way to login as root
> So they make you very much aware what you are doing

It’s the other way round. Actuall disallowing graphical root login is a
recent development, after it turned out that mere warnings in manuals,
colouring desktops red or displaying bomb images in the background
wasn’t enough. openSUSE just isn’t there yet.

jm2c
T.

16

The main thing for my not to use the GUI for root task is that I did not know what the GUI is hiding for me.Thats why I use CLI or Bash
dobby9