Page 1 of 1
enabling and configuring other users
Posted: Tue Sep 13, 2022 8:28 pm
by williwaw
from a conversation in a Debian Dog topic.....
williams2 wrote: ↑Tue Sep 13, 2022 6:54 pm
To make Puppy run with support for unprivileged users like spot
/bin/su needs the suid permission to be set.
which allows unprivileged users like spot to run su as if spot is really root
But in most Pups, su is a symlink to busybox.
The suid permission should not be enabled on busybox.
So su should be the FULL version and the suid permission should be set.
Also, /etc/sudoers and /etc/sudo.conf need to be configured.
For example, see https://www.linuxfromscratch.org/blfs/v ... /sudo.html
Are there other considerations to enabling a second user in a puppy?
wouldn't sudo be optional if one chose to work solely with su?
Re: enabling and configuring other users
Posted: Tue Sep 13, 2022 9:40 pm
by williams2
Are there other considerations to enabling a second user in a puppy?
Yes, this is the least that needs to be done. It depends on what you want to do.
Running a gui as an unprivileged user for example.
wouldn't sudo be optional if one chose to work solely with su?
Maybe, I don't think I ever tried it.
On other distros with sudo, I usually did sudo su to become root, then did what I needed to do, then switched back to the unprivileged user.
( it is very easy to open a security hole without realizing it.)
Code: Select all
# su -l spot
# whoami
spot
# pwd
/home/spot
#
# su
su: must be suid to work properly
#
# enabling the suid permission on busybox (not a good idea)
#
# su
Password:
su: incorrect password
# whoami
root
# pwd
/home/spot
#
Sorry, I didn't notice that I was posting to a Debian Dog topic. The way I read the rss feed, The topic names are in the rss file, but links2 doesn't display them.