How do I prevent the chaining together of two uroot sessions? (NETIQKB37808)

  • 7737808
  • 02-Feb-2007
  • 27-Nov-2007

Resolution

goal
How do I prevent the chaining together of two uroot sessions?

goal
How do I configure uroot to prevent unauthorized users from running uroot during a uroot session?

goal
How do I prevent unauthorized users from gaining root permissions?

goal
How do I secure root permissions?

fact
VigilEnt Security Agent for Unix 4.0

fact
VigilEnt Security Agent for Unix 5.0

fix

By default, uroot allows you to run additional uroot sessions during an existing uroot session. When this feature is enabled, an unauthorized user may be able to gain root privileges.

For example, you can run uroot during an existing uroot session by running the following command :

user1@somehost> uroot uroot /bin/sh

 To disable the ability to run additional uroot sessions during an existing uroot session:

  1. Using a text editor, open the /etc/uroot.cfg file.
  2. Type the following text near the top of the uroot.cfg file, preferably after the lines that start with a pound sign (#):
  3. Defaults:ALL !root_uroot

  4. Save and close the file.


Additional Information

Formerly known as NETIQKB37808