Today's article is actually based on a flight of fancy from a thread here on this site.

KGIII

Super Moderator
Staff member
Gold Supporter
Joined
Jul 23, 2020
Messages
11,499
Reaction score
9,997
Credits
95,342
There's a thread where @Hillbilly H was talking about setting up Linux for some students and how they were already trying to guess the password to install games.

Well, I thought about ways that they could hide their activity and one of the things I remembered was that you can make a new user without a /home directory. They're not 'hidden' but they're a little less likely to be noticed with a cursory inspection.

 


Re: sudo adduser <new_username> sudo


interesting so in Debian there is a group called sudo ?

if i type :

Code:
[andrew@darkstar:~]$ groups                                       (06-30 19:51)
http network power storage optical audio wheel andrew
[andrew@darkstar:~]$                                              (06-30 19:51)

that shows i'm part of the "wheel" group and also "http" the equivalent on Slackware and other OS being "apache" .

So is wheel group in Arch group equivalent to the sudo group in Debian ? i assume you were using Debian based ? To get myself to be a member of the wheel group i had to manually edit the sudoers list
 
You know, I don't actually know. I should mention that that step is only gonna work for those that have sudoers and not all distros do.
 
:rolleyes:... Gewiz thanks KGIII!..:rolleyes:

LOL Now can you do an article "How to find a User Without a /home Directory".
:) Dont get me wrong its not that i dont trust the kids. BUT!


Joking aside thank you very much for bringing this to my attention.
 
LOL You can check users with 'less /etc/passwd'.
 

Members online


Latest posts

Top