When I try to su to root, I get the following error:
% su -
Password:
su: Unknown id: root
%
However, I can log on just fine as root at the console, and if
I open up telnet to root directly. What's breaking the su portion?
I checked the /etc/default/login, /etc/default/su and nsswitch.conf
files in comparison with working machines and they appear similar.
This is an Ultra 10 running Solaris 9 04/04.
Thanks!
Randy
|
|
0
|
|
|
|
Reply
|
 Randy
|
4/21/2004 6:49:15 PM |
|
On Wed, 21 Apr 2004 14:49:15 -0400, Randy wrote:
> When I try to su to root, I get the following error:
>
> % su -
> Password:
> su: Unknown id: root
> %
>
> However, I can log on just fine as root at the console, and if
> I open up telnet to root directly. What's breaking the su portion?
>
> I checked the /etc/default/login, /etc/default/su and nsswitch.conf
> files in comparison with working machines and they appear similar.
>
> This is an Ultra 10 running Solaris 9 04/04.
Looks like the University of Delaware is wholly compromised by a stoopid
admin who not only did not shut down telnet but also enabled it for root.
> Thanks!
You're welcome.
|
|
|
-1
|
|
|
|
Reply
|
Dave
|
4/21/2004 8:21:38 PM
|
|
Randy <randy@blah.com> writes:
>However, I can log on just fine as root at the console, and if
>I open up telnet to root directly. What's breaking the su portion?
Is "su" set-uid root and /usr mounted without nosuid?
Casper
--
Expressed in this posting are my opinions. They are in no way related
to opinions held by my employer, Sun Microsystems.
Statements on Sun products included here are not gospel and may
be fiction rather than truth.
|
|
|
0
|
|
|
|
Reply
|
Casper
|
4/22/2004 8:43:47 AM
|
|
Casper H.S. Dik wrote:
> Randy <randy@blah.com> writes:
>
>
>>However, I can log on just fine as root at the console, and if
>>I open up telnet to root directly. What's breaking the su portion?
>
>
> Is "su" set-uid root and /usr mounted without nosuid?
>
> Casper
/usr was mounted nosuid - correcting this fixed the problem.
Whew! Now I can turn off telnet to root! :cough:
Thanks, Casper!
|
|
|
0
|
|
|
|
Reply
|
Randy
|
4/22/2004 12:42:01 PM
|
|
Randy wrote:
> Casper H.S. Dik wrote:
>> Randy <randy@blah.com> writes:
>>
>>
>>>However, I can log on just fine as root at the console, and if
>>>I open up telnet to root directly. What's breaking the su portion?
>>
>>
>> Is "su" set-uid root and /usr mounted without nosuid?
>>
>> Casper
>
> /usr was mounted nosuid - correcting this fixed the problem.
>
> Whew! Now I can turn off telnet to root! :cough:
>
And what, exactly, was wrong with *ssh* to root? (not but what
that should be turned off by default too, but it's better than
telnet...)
--
Christopher Mattern
"Which one you figure tracked us?"
"The ugly one, sir."
"...Could you be more specific?"
|
|
|
0
|
|
|
|
Reply
|
Chris
|
4/24/2004 1:13:04 PM
|
|
Chris Mattern wrote:
>>
>>/usr was mounted nosuid - correcting this fixed the problem.
>>
>>Whew! Now I can turn off telnet to root! :cough:
>>
>
> And what, exactly, was wrong with *ssh* to root? (not but what
> that should be turned off by default too, but it's better than
> telnet...)
I agree. I only turned on telnet to root long enough to troubleshoot
the problem, hence the "if I open up telnet" phrase in my original post.
Maybe "if" should have been emphasized. If that hadn't worked, then I
probably would have tried ssh, etc. I'm sure I didn't use the best
security practices during the 30 seconds I did that to troubleshoot, and
yes, that could be long enough to be compromised. I understand the
concerns, and appreciate the criticism where constructive.
Randy
|
|
|
0
|
|
|
|
Reply
|
Randy
|
4/26/2004 2:41:14 PM
|
|
|
5 Replies
1502 Views
(page loaded in 0.125 seconds)
Similiar Articles: Unknown id: root but only while su'ing - comp.unix.solaris ...When I try to su to root, I get the following error: % su - Password: su: Unknown id: root % However, I can log on just fine as root at the console,... Solaris 9 - Root Password Expired - Can't SU to root. - comp.unix ...Unknown id: root but only while su'ing - comp.unix.solaris ..... su - Password: su: Unknown id: root % However, I can ... t get into the ALOM, it was set to only ... su problems? - comp.unix.solarisUnknown id: root but only while su'ing - comp.unix.solaris ... (xlock is simply a screenlock, while CDE & xscreensaver ... Solaris Operating System: Solaris, LDAP and "su ... sane: using a Mustek 1200UB USB flatbed scanner in Debian - comp ...Unknown id: root but only while su'ing - comp.unix.solaris ... sane: using a Mustek 1200UB USB flatbed scanner in Debian - comp ... man sane-usb states: Libusb can only ... starting oracle with solaris project - comp.unix.solaris ...While we are on this. Anybody knows why project limits seem to start working only after su'ing to oracle, not in the initial ... They use > project.root in the ... root can't ls(1) a directory: Permission denied - comp.unix.shell ...While I'm not that familiar with Linux' Filesystems in ... note the "nosuid" option is in effect (no set user id). ... denied ... ultra45 i allocated two disk spaces only root ... DSP Job opening in Sacramento, CA - comp.dspThat's not unknown in some non-defense areas as well. ... Swedish and Danish share the same Norse roots ... or two of the east > > European languages, while understanding only ... Unknown id: root but only while su'ing - comp.unix.solaris ...When I try to su to root, I get the following error: % su - Password: su: Unknown id: root % However, I can log on just fine as root at the console,... Understanding and using sudo in Unix or Linux (with examples)The sudo program can also change your effective id while ... if you've only given them access to specific commands. ... put into my sudoers file to restrict users from su'ing to root. 7/20/2012 8:57:28 AM
|
Search |
Post Question |
Groups |
Stream |
About |
Register
78 followers. 