diff --git a/Linux-201/Lab-Sheet.md b/Linux-201/Lab-Sheet.md index 973c952..3e048bf 100644 --- a/Linux-201/Lab-Sheet.md +++ b/Linux-201/Lab-Sheet.md @@ -17,10 +17,27 @@ - Thread-based vs event-based servers ## Basic Security - - Creating a non-root account - - `adduser` "yourusername" - - `sudo` permissions - - +```root``` is the administrative account of Linux systems. Owing to the extremely broad permissions granted to root accounts, one of the core tenants of Linux security is ensuring each user has their own account. + +This is because root can be used, even accidentally to damage or destory the system because of its extensive permissons. Having seperate accounts, such as "yourusername" also increases accountability and decreases the likelihood of system damage. + + + - Creating a non-root account: + + ```adduser "yourusername" ``` + + We should create the new user as root. + + Execute the command as above, replacing ```"yourusername"``` with a desired username. + + During the setup, you may be asked for a password along with other information. You may customise this information as you wish. + + ```usermod -aG sudo yourusername``` + + Now that the user has been created, we should ensure that that user can execute commands with escalated permissions. These are called ```sudo``` permissons. + + Execute the command as above, replacing ```"yourusername"``` with the user created in the previous step. + - The Linux security model: Knowing why you're typing your password - SSH - Disable root login