Re : Re: Squeeze and root in graphical mode
Hi, I think that you are right, for me it's for a security reason there is that. With Mandriva it's impossible to connect you as root in graphical mode safe to configure LINUX with Mandriva's menu. Regards. Alex - Message d'origine - De : Camaleón Envoyés : 03.07.11 16:27 À : debian-user@lists.debian.org Objet : Re: Squeeze and root in graphical mode On Sun, 03 Jul 2011 08:25:32 +, alex.padoly wrote: > I would like to know if the root have a graphical environnement ? Yes, well... it can have. > I don't connect with login root with the password of root but in > terminal window I can connect me as root. Regards. It is not a good idea to run a GUI session with the root user. It can be done, but better if you first explain what is goal for doing it so... Greetings, -- Camaleón -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/pan.2011.07.03.14.27...@gmail.com
Re: Squeeze and root in graphical mode
On Sun, Jul 3, 2011 at 4:44 AM, Nicolas Bercher wrote: > On 03/07/2011 10:25, alex.pad...@laposte.net wrote: >> >> Hi, >> >> I would like to know if the root have a graphical environnement ? >> I don't connect with login root with the password of root but in >> terminal window I can connect me as root. >> Regards. >> >> Alex PADOLY > > Probably because you have to authorize X connections to any other user: > > xhost + > > before su as root (or whatever other user). > > Nicolas Why don't I just paste my keys taped to my front door, while I'm at it? Running "xhosst +" allows anyone to run X sessions on that same X server behind your back, including shells with keystroke recording,to grab your passwords, or my personal favorite, the "xroach" program to hide cockroach icons behind your windows and make them scurry for cover when a window moves. The shrieks from the programmer I'd warned about this security hole echoed down the hall and got me in professional trouble -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/CAOCN9ryS49vuX6k-r6Mq8A2gz=gD=awjbs8_bp6sqjaxiwe...@mail.gmail.com
Re: Squeeze and root in graphical mode
On Sunday 03 July 2011 18:28:51 Camaleón wrote: > SuSE (with which I also > > > started. But I didn't use it for long because I couldn't stand YaST). > > > YaST is one of the best tools an admin (and a user) can find! And now is > GPL :-) > Yes, it seems to inspire either love or hate and very little indifference! I still don't like it. I had to install openSUSE on my granddaughter's laptop because of her school's wireless network (don't ask!!) and calling my knowledge of yam and rpm rudimentary would be a gross overstatement. Lisi -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201107031840.28897.lisi.re...@gmail.com
Re: Squeeze and root in graphical mode
On Sun, 03 Jul 2011 18:06:55 +0100, Lisi wrote: > On Sunday 03 July 2011 17:32:19 Camaleón wrote: >> I was one of those newbies that sometimes logged as root when I was >> giving my first steps in Linux. I remember in that time (2003, KDE >> 3.2.x, IIRC) there was a background image¹ for root login with bright >> red and plenty of bombs. Yes, bombs, for the user to understand the >> risk of having that session open :-) >> >> Nowadays, KDE and also GNOME discourage using root GUI sessions but it >> still possible to get them. > > That bomb screen was, I think, special to SuSE (with which I also > started. But I didn't use it for long because I couldn't stand YaST). YaST is one of the best tools an admin (and a user) can find! And now is GPL :-) > And yes, I too logged in as root in those days. But only because I had > no idea at that stage what else to do for anything that needed root > access. He, he... me also :-P > I *think* that it is Debian, not KDE, that won't key you log in to a GUI > session as root. There certainly was a phase when Debian wouldn't and > PPLinuxOS, also with KDE, would. (No, I didn't make a habit of logging > in as root. I tried once, and logged out again immediately - it wasn't > just the cat who was killed by curiosity!) I don't think so. KDE disabled root logins by default in KDM since some time ago, while GNOME (GDM) was still allowing it (not sure is that's remains true by now). And I speak here for no specific distro, this has been happenning in other distributions as well. But distributions are changing/revisiting their default settings every year... Greetings, -- Camaleón -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/pan.2011.07.03.17.28...@gmail.com
Re: Squeeze and root in graphical mode - ERRATUM
On Sunday 03 July 2011 18:06:55 Lisi wrote: > that won't *key* you log that won't *let* you. Sorry - I'm a lousy typist. :-( -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201107031811.46186.lisi.re...@gmail.com
Re: Squeeze and root in graphical mode
On Sunday 03 July 2011 17:32:19 Camaleón wrote: > I was one of those newbies that sometimes logged as root when I was > giving my first steps in Linux. I remember in that time (2003, KDE 3.2.x, > IIRC) there was a background image¹ for root login with bright red and > plenty of bombs. Yes, bombs, for the user to understand the risk of > having that session open :-) > > Nowadays, KDE and also GNOME discourage using root GUI sessions but it > still possible to get them. That bomb screen was, I think, special to SuSE (with which I also started. But I didn't use it for long because I couldn't stand YaST). And yes, I too logged in as root in those days. But only because I had no idea at that stage what else to do for anything that needed root access. I *think* that it is Debian, not KDE, that won't key you log in to a GUI session as root. There certainly was a phase when Debian wouldn't and PPLinuxOS, also with KDE, would. (No, I didn't make a habit of logging in as root. I tried once, and logged out again immediately - it wasn't just the cat who was killed by curiosity!) Lisi -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201107031806.55703.lisi.re...@gmail.com
Re: Squeeze and root in graphical mode
On Sun, 03 Jul 2011 16:23:46 +0100, Lisi wrote: > On Sunday 03 July 2011 15:27:03 Camaleón wrote: >> It is not a good idea to run a GUI session with the root user. It can >> be done, but better if you first explain what is goal for doing it >> so... > > I run Konqueror as root for some file maniplulations on files which are > owned by root. Which is fine. Running an app as root ! login into a KDE session as root. > I simply don't trust myself not to do: > # cd / > # rm -R *.* > > or copy something trivial on top of something important, or do something > else disastrous. Have you considered in using Midnight Commander? Is the "swiss-knife" tool for managing almost any aspects of your day to day linux box at console but with a wizard to avoid such dumb situations (fat fingers or a bad day) we all can face :-) > With Konqueror I have to mistake the visual representation as well as > what I am telling the system to do. Sure, GUI has some advantages. > I would, however, genuinely like to have it expained to me why 5 minutes > of running a GUI file manager as root is less secure than running a > root terminal for 15 minutes or more. If I enable root running > Konqueror, Konqueror is, so far as I can see, the only application that > can run as root. From the CLI, other applications can be launched, in > particular vi, vim. nano etc. The system can be edited, shut down, > destroyed (see above!) etc. A file manager can do none of those things. The risk is the same, but again, one thing is running an application as root to perform a couple of tasks and quit and another different thing is login as root into your DE. That's something anyone should avoid unless you know very very (yes, two "very") well what you are doing and leave as soon as possible. I was one of those newbies that sometimes logged as root when I was giving my first steps in Linux. I remember in that time (2003, KDE 3.2.x, IIRC) there was a background image¹ for root login with bright red and plenty of bombs. Yes, bombs, for the user to understand the risk of having that session open :-) Nowadays, KDE and also GNOME discourage using root GUI sessions but it still possible to get them. ¹http://www.freeimagehosting.net/uploads/5ac7077004.png Greetings, -- Camaleón -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/pan.2011.07.03.16.32...@gmail.com
Re: Squeeze and root in graphical mode
On Sunday 03 July 2011 15:27:03 Camaleón wrote: > It is not a good idea to run a GUI session with the root user. It can be > done, but better if you first explain what is goal for doing it so... I run Konqueror as root for some file maniplulations on files which are owned by root. I simply don't trust myself not to do: # cd / # rm -R *.* or copy something trivial on top of something important, or do something else disastrous. With Konqueror I have to mistake the visual representation as well as what I am telling the system to do. I would, however, genuinely like to have it expained to me why 5 minutes of running a GUI file manager as root is less secure than running a root terminal for 15 minutes or more. If I enable root running Konqueror, Konqueror is, so far as I can see, the only application that can run as root. From the CLI, other applications can be launched, in particular vi, vim. nano etc. The system can be edited, shut down, destroyed (see above!) etc. A file manager can do none of those things. Lisi -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/201107031623.46732.lisi.re...@gmail.com
Re: Squeeze and root in graphical mode
On Sun, 03 Jul 2011 08:25:32 +, alex.padoly wrote: > I would like to know if the root have a graphical environnement ? Yes, well... it can have. > I don't connect with login root with the password of root but in > terminal window I can connect me as root. Regards. It is not a good idea to run a GUI session with the root user. It can be done, but better if you first explain what is goal for doing it so... Greetings, -- Camaleón -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/pan.2011.07.03.14.27...@gmail.com
Re: Squeeze and root in graphical mode
On 03/07/2011 10:25, alex.pad...@laposte.net wrote: Hi, I would like to know if the root have a graphical environnement ? I don't connect with login root with the password of root but in terminal window I can connect me as root. Regards. Alex PADOLY Probably because you have to authorize X connections to any other user: xhost + before su as root (or whatever other user). Nicolas -- To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/4e102bf3.60...@yahoo.fr
