Special accounts

It is important to DISABLE ALL default vendor accounts that you don’t use on your system (some accounts exist by default even if you have not installed the related services on your server). This should be checked after each upgrade or new software installation. Linux provides these accounts for various system activities, which you may not need if the services are not installed on your server. If you do not need the accounts, remove them. The more accounts you have, the easier it is to access your system.
We assume you are using the Shadow password suite on your Linux system. If you are not, you should consider doing so, as it helps to tighten up security somewhat. This must already be set if you’ve followed our Linux installation above and selected under the “Authentication Configuration” the option to “Enable Shadow Passwords” (see chapter 2 Installation of your Linux Server for more information).
• To delete user on your system, use the command:
[root@deep /]# userdel username
• To delete group on your system, use the command:
[root@deep /]# groupdel username
Stepi
Type the following commands on your terminal to delete users listed bellow:
[root@deep /]# userdel adm
[root@deep /]# userdel Ip
[root@deep /]# userdel sync
[root@deep /]# userdel shutdown
[root@deep /]# userdel halt
[root@deep /]# userdel news
[root@deep /]# userdel uucp
[root@deep /]# userdel operator
[root@deep /]# userdel games (delete this user if you don’t use X Window Server).
[root@deep /]# userdel gopher
[root@deep /]# userdel ftp (delete this user if you don’t use ftp anonymous server).
NOTE: By default, the “userdel” command will not delete a user’s home directory. If you want the home directories of accounts to be deleted too, then add the “-r” option to the userdel command.

Страниц: 1 2