We have an internal server running Red Hat 8 or 9 that was taken offline at least 18 months ago. The guy who set up the box is long gone. Unfortunately with him went the root password. It wasn't a big deal until we realized there is some code we do want to get off of that box now that may be useful in a future project. In particular the database structure for one project. Is there any way to get access to this data or is it just lost?
I'm used to CPanel in which I can access phpMyAdmin without getting prompted for an additional login. With DirectAdmin, when I access phpMyAdmin I get a popup asking me for username/password. Is this standard behavior, or something with my DirectAdmin config? I prefer not having to type in an additional login to access phpMyAdmin.
One problem: All my old files and folders are owned by ROOT so that means my SU account named XXX cant edit/add/delete anything from my SFTP because of folder/file permission.
Is there anyway my SUDO(wheel) account can still edit these files own by ROOT?
I tried to disable direct root login but had to struggle to find step-by-step instructions and have written the steps one needs to follow to disable direct root login.
This is an additional security measure where we prevent direct root logins and instead create a user to login and then use a command ‘su –‘ to gain root privileges.
The only risk in this procedure is that you may prevent root login but forget to add the user to the wheel group - effectively locking yourself out of the system.
Follow the steps below and you will not face a problem.
STEP 1: Let us create a user and add it to the wheel group.
For e.g. we want to create a user neonix and give him root privileges.
SSH into your server as root and follow the below commands to create a user.
groupadd neonix
useradd neonix –gneonix
passwd neonix
enteryouruserpasswordhere
verifyyouruserpasswordhere
// Please note -g in the second line
// You can replace neonix with any username of your choice.
STEP 2: Add user to wheel group.
Use your browser to Login to your WHM panel and click on Manage Wheel Group Users.
You will see the user you just added (neonix). Select the user and click ‘Add to group’.
You will see that the user has been added – Users Currently in the wheel group root,neonix
You have successfully added a user to the 'wheel' group who will be able to 'su -' to root.
LOGOUT OF SSH
Before we disable root login, let us check if the user can login and su – to gain root privileges.
SSH into your server as 'neonix' Login as: neonix Password : enteryouruserpasswordhere su – password: enter root password here
You have successfully logged in and have root privileges. Now let us disable root login.
STEP 3: Disable Direct Root Login
(The below steps are from webhostgear.com)
1. Copy and paste this line to edit the file for SSH logins pico -w /etc/ssh/sshd_config
2. Find the line Protocol 2, 1
3. Uncomment it (Remove #) and change it to look like Protocol 2
4. Next, find the line PermitRootLogin yes
5. Uncomment it (Remove #) and make it look like PermitRootLogin no
6. Save the file Ctrl+X then Y then enter
7. Now you can restart SSH /etc/rc.d/init.d/sshd restart
Now, no one will be able to login to root with out first logging in as 'neonix' and 'su -' to root, and you will be forcing the use of a more secure protocol.
Currently I have a server that has direct root SSH access disabled (have to login as regular user then su to root), but I am currently working on setting up authentication via SSH keys, but I can't seem to get it working with direct root SSH access disabled? Is this normal, and if so is there anyway to work around it?
Basically I'd like to be able to authenticate both ways; both with SSH keys or by logging in as a regular user and su to root.
i can not login to my decated server by using root. the password is not correct.. becasue i did something wrong with my server. i used chmod 777 -R /public_hmtl and chown to modify my server. and i can not login anymore, LT asked me to reload my server, do i need to reload it?
I have read that although chained root ssl certificates can be more difficult to install they are actually more secure since the root certificate cannot be compromised, only the intermediary.
Is this true? It looks like both google and amazon both use chained SGC certs.
Browse to www.mydomain.com/webmail and get login box > login accepted and taken to Horde/Squirrelmail choice screen > choose Squirrelmail and get login box ... login not accepted! > Retry and choose Horde ... login not accepted!
The login is correct and the results are the same when logging in as root, or through /cPanel or /Webmail.
i had access in some servers via SSH and when i try to connect i get:
Welcome to The HOST! login as: nickname -------------------------- We monitor/log everything on that server! IP Logged! -------------------------- nickname@host's password: .............
I know that there is the motd file in /etc that i can put a message but i see it when i full be recognized by the server.. (after putting the password).. How can i put the other 2 messages?
when I find the subscription from the admin side of PPA, if I select "Login as user" I've noticed that it is different from actually logging in as the user - for example - "add domain alias" is missing when I login as a customer - but not as an admin... I need my customers to add their own aliases and manage them - how do I add that feature to the client login side?
For my centos box I use PuTTY and that allows me to get into the server and make any changes I need. I am looking at getting a second server, this one a Windows 2003 machine and I was wondering how you mange those servers remotely. Is it done using command line or is their a gui app to connect to it remotely? Can I install something like pcAnywhere on it or is there something web server specific?
I noticed in apache access log most of ip belong to 127.0.0.1 and it access to hostname domain.(hostname.domain.com).Any idea why is that happening?I realy dont see sense in that.
Here is one example:255-6-0/0/30. 0.0012112900.00.000.57 127.0.0.1hostname.domain.comGET / HTTP/1.0
Few months back we migrated to a new server (Layered tech Savvis to Databank)
All has been running smoothly, better than before the move.
Over the last week we have had reports from a few clients in various locations across australia and a few in the uk that they can not access the server.
The DNS is resolving correctly for them and traceroutes have not proven anything.
Layered tech have not been real helpful, eventually they put me onto their network department who ran a global test which came back as the server being accessible from everywhere.
when I install apache on my machine I can open up port 80 on the router and allow outside access.
But, now here is the issue.
I have a p4 server which connects via ethernet to my apple mac. My apple mac connects to the internet via wireless. My apple mac has web sharing activated so the server can access the web. The server has OpenBSD 4.3 installed without X.
What I want to do is get my server online.
It's IP is 192.168.2.4, my macs IP is 192.168.1.1. In the router configuration how would I set it up? Would the router see 192.168.2.4?