Managing User Accounts in Lindows
November 10th, 2003 by Steve R. Hastings in
Lindows, a distribution of Linux, does not require you to set up user accounts; by default you log in as the Administrator. This article explains why you should have user accounts anyway and how to manage them. Experienced Linux users can safely skip ahead to the Setting Up Accounts section.
Before you can use a Linux system, you need to log in using a user account. A user account is a record that the system keeps for each user to record system data about that user, such as the user's password. The account is linked to a user name that is unique on a Linux system. The system checks the user account data to decide whether to grant or deny each user access to files and devices on the system.
A special account called root can be found in any Linux or other UNIX-based system. The Lindows login manager calls this account Administrator. Sometimes the root account is called the Super-User account. This account has full permission over the system--it can do almost anything.
In most situation, when you are logged in using the root account you have too much power. You can delete or overwrite any file on the system and possibly make the system stop working correctly. If someone can trick you into running a program or if a virus somehow runs while you are logged in, that program then has the ability to do anything at all; it could actually take over your system. In short, running as root is dangerous.
The alternative to running as root is to run as a user. Technically, root is a user too, but usually we refer to root and users as separate entities. When you are running as a user, you greatly reduce your ability to harm your system.
Every user account has a unique user ID, a number that identifies each specific user. The root user always has a user ID of zero; other user numbers vary. When you are logged in as a user, any program you use runs under your user ID, and the system checks that user ID to decide whether the program is allowed to do certain tasks.
Each user account also has a unique user name, sometimes called the login name. For the root account this name is always root. The user name can be anything, however. I use steveha on my home system, but I could be coolguy or some other nickname. User names should be short (no more than 8 or 10 letters) and contain numbers and lower-case letters; I do not recommend the use of upper-case letters or punctuation in user names.
Each user has a directory assigned to it, the home directory, over which the user has full permissions. The user's settings are stored in configuration files, which are kept in the home directory. By convention, the home directory is in /home and has the same name as the user name. So a user named coolguy would have /home/coolguy for a home directory.
Occasionally, you may discover that something doesn't work because you don't have permission to use it. For example, if your user account doesn't have permission to use the sound card in your Linux system, you aren't able to play music. But most Linux systems, including Lindows, do a good job of setting up user accounts with the permissions they need.
Because it's dangerous to run as root all the time, there are ways to access the power of the root account while logged in as a user. For example, you can run a command shell and switch only that command shell to run as root. A command called su switches user identities for a particular command-shell session. By default, it switches to the root user, but you can also use it to switch to another user identity. For security, you need to type the account password when switching with su. su actually opens a new shell inside your original command shell, so when you exit from the su shell you find yourself back in your original command shell.
If you want to run only one command as root, you can use sudo to run a single command as another user. If your usual command shell is Bash, then this command would do exactly the same thing as the su command:
# sudo bash
Graphical versions of sudo are available, too. Most of them don't have sudo in their name, only su. KDE has kdesu, GNOME has gnomesu and there are others.
Groups add another level of security to a Linux system. A group is a set of users who collectively can be given permissions. For example, access to the sound card is controlled by a group called audio, and any user who wants to be able to use the sound card needs to be in the audio group. Each group has a unique group ID, analogous to the user ID number, and a unique name, analogous to the user name.
A Linux system can assign permissions based on user ID or group ID. Anytime more than one user might want to access a file or device, it makes sense to use group permissions. For example, at a company where many people share a Linux server, the Project X team might have a group called projectx. All members of the Project X team then are added to the projectx group. All the secret files belonging to Project X would be made accessible only to the members of the projectx group.
You can use the Lindows File Manager, which actually is a KDE program called Konqueror, to make a file accessible to the members of only one particular group. Right-click on the file in the File Manager, and choose Properties from the right-click menu. Click on the Permissions tab, and then in the Ownership box, edit the Group field to specify the desired group. Then use the Access Permissions checkboxes to make sure only members of the specified group can access the file: make sure the Group permission bits for read and write are the only ones checked.
You can make a directory accessible to members of only a single group using the same technique. For a directory, the execute permission bit controls permission to access that directory; the read bit controls permission to view the contents of the directory; and the write bit controls permission to create new files in the directory.
You can find many tutorials on the Web that outline how to manage a Linux system by using user accounts, group accounts and permission bits. Almost all of them explain how to use command-line tools to change the settings. In Lindows, however, you actually can do most management tasks from the Lindows desktop, using the User Manager and the File Manager.
A program called the User Manager, which is a KDE program called KUser, is used to manage user accounts. At the end of Lindows setup, you have a chance to create user accounts. After the initial setup, you are prompted to remove the Lindows install CD and reboot. Then, for your first login, you can login as the root user. (No other users exist yet at this point in the Lindows setup process, only root.) Once you have logged in to the Lindows desktop, a window called First Time Setup opens and offers a license agreement. At the bottom of that window are three buttons: Set Time, Advanced and Finished. To create user accounts, click on the Advanced button, which opens the Advanced Settings menu. From there, click on Add Users to access the User Manager. Note: if you didn't set a password for the root user account yet, you can do it from the Advanced Settings menu as well; click on Set Administrator Password.
At anytime while running Lindows, you can run the User Manager by clicking on the Lindows menu button in the lower-left corner of the desktop and choosing Settings, User Manager. The User Manager has menus, a toolbar and two tabs. The toolbar provides convenient access to the most common operations. The two tabs are Users and Groups.
The Users tab shows a list of all users. UID is the User ID number, and User login shows the user account name. Full name is used optionally to specify the full name of the user for the account.
If you double-click on a user, or click on the Edit button from the toolbar, you get the User Properties dialog. This has three tabs. The User Info tab lets you change various information associated with the account. I suggest you edit the User login and Full name fields and leave all the other fields alone. The last fields, Office #1, Office #2 and Address all are comments. Linux ignores these fields; they simply are there for the system administrator's use. Notice that the User Info tab has a button, Set Password, that brings up a dialog to set a new password.
The second tab is the Password Management tab. I suggest you leave all of its settings alone. Oddly, it is not possible to change the password from the Password Management tab; you must use the Set Password button on the User Info tab.
The last tab, Groups, lists the groups to which the account belongs. A checkbox next to each group controls whether the account is a member of that group. By default, Lindows does a good job of setting up all the groups a user might need, so you probably will not need to make many changes here.
Adding or removing groups from the system is possible, as is changing group ID numbers, from the User Manager's Groups tab. By default Lindows does a good job of setting up your system here too; it is unlikely that you will need to use these features for a desktop Lindows system.
The User Manager actually can be a little bit dangerous. If you delete the root user, for example, bad things can happen: for one, you will no longer be able to reboot the system. It is possible to recover from this problem without completely re-installing your Linux system, but it's a job for an expert. In short, use the User Manager to manage non-root users, and leave the root account alone.
Using the User Manager, create at least one user account for each person who will be using your Lindows system. I recommend you add each user account to the following groups: audio, dialout, dip, cdrom, video, and user. In addition, if your users are connecting to the Internet using a modem, make sure they are members of the dialout and dip groups.
When a user logs in to a user account, the Click-N-Run Installer automatically opens and runs. Every time it runs, it pops up a dialog box that asks for the root password. The official solution for this, from the Lindows support Web site FAQ 325, is to remove the Click-N-Run Installer from the autostart programs by moving the file /usr/share/autostart/clicknrun.desktop somewhere else.
Security always involves more fuss and bother than does no security--until someone takes over your system or a virus wreaks havoc or you accidentally clobber a file and your system stops working. The extra initial work it takes to set up user accounts and use them is worthwhile.
Lindows does not run as smoothly with user accounts as it does when you run as root all the time; be warned that you need to do a bit of extra work to set up things correctly. As a first step, I hope this article helps you get user accounts working well on your system.
Controlling access to files using user and group permissions
Lindows is based on the Debian GNU/Linux distribution. Debian GNU/Linux System Administrator's Manual
Steve R. Hastings first used UNIX on actual paper teletypes. He enjoys bicycling with his wife, listening to music, petting his cat and making his Linux computers do new things.
Special Magazine Offer -- 2 Free Trial Issues!
Receive 2 free trial issues of Linux Journal as well as instant online access to current and past issues. There's NO RISK and NO OBLIGATION to buy. CLICK HERE for offer
Linux Journal: delivering readers the advice and inspiration they need to get the most out of their Linux systems since 1994.
Sorry, offer available in the US only. International orders, click here.
Delicious
Digg
Reddit
Newsvine
TechnoratiSubscribe now!
Recently Popular
| Linux HOWTO: Video Editing Magic with ffmpeg | Jul-23-08 |
| Man vs. Myth: Greg Kroah-Hartman and the Kernel Driver Project | Jul-21-08 |
| Google Gadgets for Linux | Jul-21-08 |
| Building a Call Center with LTSP and Soft Phones | Aug-25-05 |
| Review: HP 2133 Mini-Note | Jul-16-08 |
| Boot with GRUB | May-01-01 |
Featured Videos
Non-linear video editing tools are great, but they're not always the best tool for the job. This is where a powerful tool like ffmpeg becomes useful. This tutorial by Elliot Isaacson covers the basics of transcoding video, as well as more advanced tricks like creating animations, screen captures, and slow motion effects.
Shawn Powers reviews the HP Mini-Note portable computer.
Thanks to our sponsor: Silicon Mechanics
Silicon Mechanics is a leading manufacturer of rackmount servers, storage, and high performance computing hardware. The best warranty offerings available are backed by experts dedicated to customer satisfaction.
From the Magazine
August 2008, #172
There's nuttin like a Cool Project to give you some relief from the summer heat, so get out your parka cuz we got a bunch of em. First up is the BUG, not a bug, The BUG. It's got a GPS, camera and more, in a hand-sized package that's user programmable. The BUG does everything. It's both a floor wax and a dessert topping. Get one now. Need a software version of a Swiss Army knife? Take a look at Billix, and don't leave home without it. Then, chew on this one, an X server on a Gumstix device driving an E-Ink display. Need more storage? How about 16 Terabytes? Can do.
And, of course, we have the usual cast of characters: Marcel, Reuven, Dave, Kyle, Doc, plus the new kid on the block Shawn Powers. But it doesn't stop there: build a MythTV box on a budget, build your own GIS system, set up the tools to monitor your enterprise and more. Finally, remember The War of the Worlds? Now you can play too.
Re: Managing User Accounts in Lindows
On November 20th, 2003 Anonymous says:
Thanks for the really helpful article Steve! If anyone has trouble with permissions while running under a user account please send email to support@lindows.com.
Kendall Dawson
(Community Liaison)
kendall@lindows.com
Why is root the default?
On November 14th, 2003 Anonymous says:
Running with root permissions by default is dangerous. It is just to easy for a home user to delete /usr or whatever.
So why not set-up a non-root user by default? Make it called "user", with a UID of 1000 (note to redhat users: this is debian. See debian guidelines). Allow even renaming it later (that may be tricky. Should be tested. The name is listed in too many places, I figure).
You don't want to confuse the user with an extra prompt for password? No problems: use the root password. OTOH, if the user has an emptypassword I would tend to deny any remote access to that account.
Does this complicate the user interface much? No. Not a bit.
Does this give a more error-proof system? Sure
Home users
On November 12th, 2003 Anonymous says:
What a fascinating set of discussions going on here. A lot of contrasts being highlighted here - between Linux and Windows, between geeks and non-geeks, between home users and IT users.
Aside from Lindows, there really has been little or no effort to market Linux toward home users (not that the Micorsoft monopoly allows the home user much exposure to Linux, but still). The first thing we geeks need to remember is that Linux, based on Unix as it is, is designed inherently for a setting where you have a number of users sharing the system, which is controlled by a system administrator. In any multiuser system, it is not always a foregone conclusion that you can trust your users - thus the need to limit the abilities of users and give the unlimited power of root only to the system administrator.
The folks who are suggesting that Linux makes them "jump through hoops" for security, or the person who says that the segregation of root somehow limits what they can do on their computer, are clearly not system administrators who face the problem of multiple, possibly untrusted users. We need to remember that. These are clearly average-joe, non-geek home users - the kind of people that use their computers for e-mail, to play games, balance their checkbooks, and maybe let their kids do their homework or chat online with their friends, and be done with them. These people have probably used old versions of Windows for years, and have been fully immersed in the old Microsoft philosophy of non-existent security and lack of multiuser support in their home products.
A few of the comments above from other LJ readers clearly illustrates the uphill battle Linux users face in educating the public about safe computing, and the damage Microsoft has wrought in that same area. *Of course* not using the root account unless you absolutely have to is good practice - common sense tells us that. *Of course* you want to create a separate area on your system for yourself as a user so that something stupid you do to your computer doesn't harm the system. Those are basic elements of the Unix philosophy, and good computing practice to boot. But Microsoft has trained its customers differently - and maybe they didn't set out specifically to do that, but they did. Linux is already in the process of conquering the server space, and the business desktop is next - but after that will come the home users, and in this realm we aren't going to have to convince IT managers. We'll need to convince non-geek users who can't understand why they need to create a "user" account for themselves on Linux when they never did on Windows, or why you need to enter a password before you can install new software.
I'm glad Lindows is taking the first few steps to reach out to the home user, but perpetuating the poor practices of the Win9x way of doing things is not the way to go. Educating the user, not dumbing the system down and eliminating its first line of defense, is the proper course of action, and one I hope Lindows addresses in future versions of their distribution.
It seems...
On November 11th, 2003 Anonymous says:
...most of you don't get it.
Security DOES matter, just as much for home users as it does anywhere. Especially if they have a constent network connection (broadband).
The problem in this instance is Lindows, NOT Linux.
NO users should not have to go through this process, the install or first time you boot the computer should be asking you to do this and guiding you through it.
You idiots claiming how "Windows gets it" need to wake up!
Why do you think Microsoft is pushing it's new security initiatives...they have quoted in the past that they SACRIFICED SECURITY IN FAVOR OF EASE OF USE AND FEATURES!!! and now they are paying for it. Thinks
at MS are changing, why make Linux (in terms of security) just like OLD versions of Windows?
The ideal thing is to create a system that balances security and ease of use...with out sacrificing too much of either.
So how should we do it? Well look at Ark Linux and MacOS X...neither system let you run as root by default and are dead easy to use.
I have been working on an article about this very thing at my website, it's *almost* finished so you can read it here:
Desktop Security
911
On November 11th, 2003 Anonymous says:
After 911 did the airlines do the smart thing and simply figure out how to secure the cockpit? NO! Instead, they waste millions of hours of productivity every day in time spent making every traveler go through an extensive screening process. There are SMART and DUMB ways to make something secure. The airlines do it in an inefficient, dumb way, by making it annoying to travel.
I agree with the earlier post that computers need to get smarter, not the user. Technology should work for us, not the other way around.
Would it be bad if people were smarter about technology? No, of course not, but people don't buy computers to create more work. They want the computer to invisibly do what it needs to do. Geeks love creating more work on the computer. Unfortunately for Linux, 95% of the world aren't geeks and don't live to compute. They just want to get their work (or play) done, not feel like they are James Bond going through a security clearance every time they want to change the wallpaper on their computer.
I agree, this is where MS has it all over Open Source. I think users should have total control over their computers and have the choice of what they want to do, without having a Linux geek snubbing their nose at them for not wanting to have to take a class on how to use their computer.
/z
Good...but...
On November 11th, 2003 Anonymous says:
I think this is a useful article helping educate people about security and what options they have. Where Linux geeks always go over the top is with their religious table pounding about the right and wrong way to do things--like anyone that runs as root is going to burn in hell. It's that fanaticism that keeps non-geeks away from Linux and why Microsoft doesn't have anything to worry about when it comes with Linux on the desktop.
The average DESKTOP computer user doesn't want to jump through a bunch of hoops. Microsoft understands this. Linux geeks don't have a clue.
Maybe Lindows will find the best of both worlds.
Tim G
Re: Good...but...
On November 11th, 2003 Anonymous says:
Yes, it's called Ark Linux or MacOS X
Lindows has it all wrong.
Re: Managing User Accounts in Lindows
On November 11th, 2003 Anonymous says:
I saw an experienced knowledgeable admin enter the following command in haste: rm -r /etc
It's not what he wanted to do, he wanted to delete the copy of etc that he had in his home directory, unfortunately the "." key was sticky and he was logged in as root.
It was just a matter of restoring it from tape, and fortunately he didn't log out!
Practice safe computing or you'll just have yourself to blame.
Missing the Point
On November 10th, 2003 Anonymous says:
It's nice to see the authors of the previous comments completely missing the point. Yes, you paid for your computer and you want all the power, whatever that means. Well, so what? Sometimes, you make mistakes (yes, even you!), like removing files by accident or copying over something you shouldn't have. It's at those times that running at a level where such mistakes don't completely trash your installation can be a big benefit.
Now, I don't necessarily think that everyone should go out and create hundreds of users to cover every different service they're running (although a lot of those users should actually be set up by the people who put the distro together), but running as root isn't using "the power" - it's like driving down the interstate with your seatbelt unfastened, claiming that you won't have your "freedom" curtailed.
Too much power?
On November 10th, 2003 Anonymous says:
Hello? I OWN my computer. I don't like people telling me that I would have "too much power" when I run MY computer.
I WANT all the power I paid for. I agree that if I'm going to let someone else use my computer (which I personally almost never do) that it makes sense for me to set them up a user account. But, when I am using MY computer, I'm not going to purposely strip away my "power."
I don't want to have to type in a password to change the time on my computer. I paid for this sucker and I'll keep ALL THE POWER I can, thank you very much.
dj
Re: Too much power?
On November 16th, 2003 Anonymous says:
"Hello? I OWN my computer. I don't like people telling me that I would have "too much power" when I run MY computer."
Running from user accounts does not take away your power as the owner of your computer.
It takes power away from every attacker that finds a security flaw in your web browser, mail client, IM client, etc...
For parents it gives more control to limit what the kids can access and to keep them from screwing up the computer outside of the account they run from with software they install, internet sites they visit, settings they change, etc...
Any pain involved in running LindowsOS from a user account is the fault of Lindows.com. They could easily make the default setup for a user account include the necessary group memberships for audio, video acceleration, CD Burning, etc... And with a little work provide tools that are simple for the average user to understand to manage access for various tasks.
The same thing applies to Windows. The failure to have more user access levels than Administrator and Limited User and the lack of an easy to understand way to create and manage user access levels rests with MicroSoft.
Re: Too much power?
On November 14th, 2003 steveha (not verified) says:
Sure, it's your computer. You can still access the full power of root whenever you need it. In the article, I even tell you how to access root power just for one command.
If you run as root all the time then the system cannot protect you from any mistake you might make. If you accidentally typed a command that erased every file in /etc, or /boot, that would mess up your computer big-time... if you ran that command as root; if you ran it as a user, nothing would happen except an error message.
In day-to-day use of the computer, you don't need the power of root. You just need to be able to run your web browser, email client, word processor, games, etc. And you can do all that without running as root.
Once your system is set up, you rarely need to do anything as root. The exception is to install software, but Click-N-Run does that on Lindows, and it will prompt you for the root password so you still don't need to be logged in as root.
steveha
Re: Too much power?
On November 14th, 2003 Anonymous says:
Then you're an idiot, and deserve to break your lovely powerful computer.
And when you do, guess what? You get to keep both pieces!
Muppet...
Re: Too much power?
On November 10th, 2003 Anonymous says:
Is this a joke? No, really, are you joking?
Open up a terminal window on your Lindows box, typerm -rf /and enjoy that rush of power!
This is why people don't use Linux
On November 10th, 2003 Anonymous says:
This is why people are affraid to use Linux. You scare people into thinking they need to do all this stuff to have a secure computer.
Everyone talks about how much better Linux is than MS Windows. To me, I see no difference. MS Windows isn't all that secure, but either is Linux apparently, unless you jump through a bunch of hoops.
Shouldn't we try to make computers smarter than this? Shouldn't we make software that keeps a computer secure WITHOUT the user jumping through hoops right and left????
We can do better than this guys! Linux should be smarter, not just require more hoop jumping.
Seems to me that Lindows.com understands this and is trying to train the software to be smarter, not the user.
Roger
Re: This is why people don't use Linux
On November 14th, 2003 steveha (not verified) says:
Everyone talks about how much better Linux is than MS Windows. To me, I see no difference.
MS Windows 2000, and Windows XP, by default set up an "administrator" account (same idea as the root account in *NIX) and one or more "user" accounts. Same exact idea. It's just that Windows sets it up for you, while Lindows makes you do the setup.
It will probably take you longer to read the article than to set up a couple of user accounts. It's not a big deal!
I do think Lindows should, as recent versions of Windows do, set up at least one user account and make the user run in that by default.
Seems to me that Lindows.com understands this and is trying to train the software to be smarter, not the user.
No, Lindows.com just disables most of the security features in Linux by default. That's certainly a convenient way to set up a system, but it drastically increases the risk from mistakes or viruses or Trojan Horse programs.
At least it is possible to set up user accounts in Lindows 4.0; otherwise I would have given it a "not recommended" in my review.
steveha
Re: This is why people don't use Linux
On March 20th, 2004 Anonymous says:
I have tried Diffrent Linux Systems for the last 2 years and right now Lindows ....!
The bottom line is Linux is a hassle and every version i have tried from redhat 9 ect susie ect ,,,,,all the rest all have flaws of one kind or another.. its the sound or the video ect...bla bla bla ...
BOTTOM LINE IS LINUX SUCKS....!
Re: This is why people don't use Linux
On November 11th, 2003 Anonymous says:
You are right, users shouldn't have to do all this...it should be easier...but that is Lindows fault not Linux in general
and yes, security DOES matter!
Re: This is why people don't use Linux
On November 10th, 2003 Anonymous says:
Wow...it's September on the Linux Journal comment board!
This is why people are affraid to use Linux. You scare people into thinking they need to do all this stuff to have a secure computer.
They do need to do all this stuff to have a secure computer...
Everyone talks about how much better Linux is than MS Windows. To me, I see no difference. MS Windows isn't all that secure, but either is Linux apparently, unless you jump through a bunch of hoops.
Regrettably, it's true, you do have to take a few precautions to keep your computer secure. One of which is setting up a user account so you don't accidentally delete your entire system, something I guarantee you the "I WANT MY POWER" guy below is going to do in the near future.
Shouldn't we try to make computers smarter than this? Shouldn't we make software that keeps a computer secure WITHOUT the user jumping through hoops right and left????
I can't wait to see what you're going to come up with! (You are programming this miracle OS, right?)
Seems to me that Lindows.com understands this and is trying to train the software to be smarter, not the user.
Yeah, the last thing we want is smarter users! By the way, how does disabling the most basic security feature of the system (segregating the unlimited power of the root account from day-to-day user activity) indicate that Lindows is "training the software to be smarter"? I'm just not seeing it.