View Full Version : Leave on as root?
mouse46
27th September 2004, 08:32 PM
Hello,
I have finished installing everything I need for my server. But what I would like to know is, should I leave the server logged on as root?
Thanks
Tashiro
27th September 2004, 08:37 PM
No I don't think so, people even advice not to surf on the internet when logged on
as root. So I won't leave your server with open ports logged on as root too.
Maybe someone could explain....
Tashiro
RedFedora
27th September 2004, 08:45 PM
Since the root user (and the programs root runs) have access to everything
on the system, it is considered a security issue to stay logged in as root. In fact,
it is considered ill-advised to login as root more than nessiary.
For this reason, most people create a "normal" user account on their systems for
everyday use.
kosmosik
27th September 2004, 08:46 PM
I have finished installing everything I need for my server. But what I would like to know is, should I leave the server logged on as root?
what you mean?
is it needed to "leave the server logged on as root"? if it is not needed it shouldn't be done. simple as that. it is like very very simply poilitics - you use as lower as it can be privilege to acomplish something. when something does not need root access you shouldn't give it root access and it is about anything. so probably not...
oh and if you mean like remote shell left open - you can set up your shell to drop login session (disconnect) after some time of inactivity.
I've once forgoten to close my putty Window when leaving internet c@fe :)
earobinson111
27th September 2004, 09:47 PM
never log on as root is a good rule of thumb, anything u need to do can be done in the terminal using the su command
mouse46
27th September 2004, 10:41 PM
woah, I think I know what the answer is then.
I'm running a simple http/ftp/mail server.
So I can leave it logged in as a user?
superbnerd
27th September 2004, 11:45 PM
No, you should always loggout when you are not using the syste!. If any has access to your system, especially the command line, they can compromise it in minutes. If you use your system frequently and don't want to have to constently login, I suggest you use the lock screen feature on your screen saver (preferences > scren saver). You won't have to type your username, just your pasword.
mouse46
28th September 2004, 02:39 PM
Thank you all for the help, it is much appreciated :)
Jman
29th September 2004, 02:50 AM
If you are running services like a webserver you don't need to be logged in at all, they always run in the background.
vBulletin® v3.8.7, Copyright ©2000-2013, vBulletin Solutions, Inc.
