adding user account to ALL groups quickly ? how ? [ANSWERD]

[InsaneHamster]

i wana add a 'user' account to all the groups instead of adding him one by one. and like checking what groups he is part of and such. what is good documentation on user accounts .

thanks

is it safe for me as in r00t to just edit my /etc/group file and just add my 'user' to the end of them all
should include this account (which will be my main account) in the root group also ?

[JRV]

[Headrush]

Adding a user to all groups probably isn't a good idea and undermines the security features of linux, but if you want

[InsaneHamster]

well until now iv always ran my box as root. but i plan on using a apache2 and my sql + logs and firewalls and running a hardned system this time around. i added the groups i only needed but some programs didnt work and no error was given that is why i assumed the easiest way to solve this was to make the main account which will be loggin in 24/7 to be allowed acess to everything

(eterm wouldnt support transparencies via a user account ??!?!?!? )

and such other little things. i got sudo to work properly n such.

if there are any documents you recommend i read feel free to post them as i am just learning how to harden my system for network server applications. via running servers and proper network administration of them.

see i need to know how to properly setup a user account (which i was gona give full access to) then so i can add system logs and readers (if u can name some 'industrial' ones used i could test it would be appreciated) and from there learn how to network administrator the system from a user account and such. before moving on.

[JRV]

[D-M]

Hamster, there is already a user account you have access to that has access to everything and can do anything...Root.

However, like everyone has already said, it isn't a good idea to run as root all the time. The main user account you login with for day to day use should be restricted as possible.

If you are planning on using apache and mysql, you don't need to alter your everyday restricted user account to do so.

as root you install, configure, stop and start these services, and only be logged in as root for the duration of the specific task you need the elevated privileges for. or you log in as a restricted user and open a terminal and su over to root and do your work that way.

If in the case of eterm you need to trouble shoot then ya, log in as root and see if eterm dose what you want. if under root eterm functions as you would expect it too, but not as a restricted user then a little research is needed to make it function as you want under a restricted user account.

I would strongly encourage you to do some research into unix/linux basic security best practices and reconsider your plan.

DM

[Jaglover]

[InsaneHamster]

thank you all for your advice and replies. currently i deleted my any files in my /root folder so it is a virgin(no trace left as i used it for my main account)

currently i am in a user account. i redid it so it only has access to certain groups "root bin daemon sys adm disk wheel floppy audio dialout tape video xfs "

all i did was use the same groups that my root account was in... i will need time and knowledge / experience to know what each is for like root bin adm sys are the only ones i dont know on the list so far

the Eterm was solved with a chmod 777 /tmp (turns out it needs to create temporary files)

and from here i learn how to properly run the linux system via a user account while only logging in root for updates. and configuration of system services




EDIT: Just an update changed the account to 4 groups only wheel floppy audio games.

hopefully if i start running into problems someone already has on the forums and theyll be an archived post about it.

[JRV]