From owner-freebsd-questions@FreeBSD.ORG Thu Oct 11 13:15:33 2007 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8AA7616A41A for ; Thu, 11 Oct 2007 13:15:33 +0000 (UTC) (envelope-from lars@larseighner.com) Received: from mail.team1internet.com (mail.team1internet.com [216.110.13.10]) by mx1.freebsd.org (Postfix) with ESMTP id 55AC613C469 for ; Thu, 11 Oct 2007 13:15:33 +0000 (UTC) (envelope-from lars@larseighner.com) Received: by mail.team1internet.com (Postfix, from userid 12346) id A18A016B6FF; Thu, 11 Oct 2007 08:15:32 -0500 (CDT) Received: from larseighner.com (unknown [216.110.13.70]) by mail.team1internet.com (Postfix) with SMTP id A2CFC16B50B; Thu, 11 Oct 2007 08:15:30 -0500 (CDT) Received: by larseighner.com (nbSMTP-1.00) for uid 1001 lars@larseighner.com; Thu, 11 Oct 2007 08:14:28 -0500 (CDT) Date: Thu, 11 Oct 2007 08:14:22 -0500 (CDT) From: Lars Eighner X-X-Sender: lars@debranded.6dollardialup.com To: williamkow In-Reply-To: <470E0667.7080000@yahoo.com> Message-ID: <20071011081416.L938@qroenaqrq.6qbyyneqvnyhc.pbz> References: <470E0667.7080000@yahoo.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII; format=flowed X-Sanitizer: Anomy and SpamAssassin mail filter - see http://www.6dollardialup.com/support/spaminfo.html X-Spam-Status: No, hits=-2.5 required=10.0 tests=EMAIL_ATTRIBUTION,IN_REP_TO,J_CHICKENPOX_66,OACYS_SINGLE, QUOTED_EMAIL_TEXT,REFERENCES,SIGNATURE_SHORT_DENSE, SPAM_PHRASE_03_05,TO_LOCALPART_EQ_REAL version=2.43 X-Spam-Level: Cc: "freebsd-questions@freebsd.org" Subject: Re: How to create a user account with the same permission as "root" ? X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 11 Oct 2007 13:15:33 -0000 On Thu, 11 Oct 2007, williamkow wrote: > Finally, I manage to setup X.org and then KDE 3.5.4 running on FreeBSD > 6.2-Release. > I created a user account named "william" and do not assign any group as I > do not know what are the list of group name for me to select. To start > KDE, i use command "kdm" but I can only logon using the newly created user > name "william", but it do not have same permission/access rights as "root" > account. > Please show on how to enable this user account, with the same permission > as root ? You cannot do exactly what you say you want to do. What you can do is create an alias for root that has its own home directory, choice of shells, etc. Look at how toor is set up in master.passwd. You can set up william like toor by editing master.passwd (always use vipw to edit master.passwd -- not a naked text editor -- but you can use the editor of your choice if you set the EDITOR environmental variable). But this makes william an alias of root, not another user with root permissions. (That is william must be UID=0, etc.) for example: william::0:0::0:0:Bourne-again \ Superuser:/usr/home/william:/usr/local/bin/bash in master.passwd will take you to /usr/home/william when you log in as william, and your shell will be bash, but if you whoami, the answer is root. Everything that goes by UID will identify you as root. Basically because you are root. There are tons of reasons why this is a very bad idea, and you will probably hear most of them, but they boil down to this: You should not run as root. You should should be acutely aware of when you are doing something as root, and you should do as little as you possibly can as root. You can put an ordinary user william in the wheel group so he can assume root-like powers when necessary, but when unnecessary he shouldn't. There are also some okay reasons such as wanting a different shell or home directory for your root alias. -- Lars Eighner http://www.larseighner.com/index.html 8800 N IH35 APT 1191 AUSTIN TX 78753-5266