| 1 | <?xml version="1.0" encoding="ISO-8859-1"?>
|
|---|
| 2 | <!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.4//EN" "http://www.oasis-open.org/docbook/xml/4.4/docbookx.dtd" [
|
|---|
| 3 | <!ENTITY % general-entities SYSTEM "../general.ent">
|
|---|
| 4 | %general-entities;
|
|---|
| 5 | ]>
|
|---|
| 6 | <sect1 id="ch-system-pwdgroup">
|
|---|
| 7 | <title>Creating the passwd, group, and log Files</title>
|
|---|
| 8 | <?dbhtml filename="pwdgroup.html"?>
|
|---|
| 9 |
|
|---|
| 10 | <indexterm zone="ch-system-pwdgroup"><primary sortas="e-/etc/passwd">/etc/passwd</primary></indexterm>
|
|---|
| 11 | <indexterm zone="ch-system-pwdgroup"><primary sortas="e-/etc/group">/etc/group</primary></indexterm>
|
|---|
| 12 | <indexterm zone="ch-system-pwdgroup"><primary sortas="e-/var/run/utmp">/var/run/utmp</primary></indexterm>
|
|---|
| 13 | <indexterm zone="ch-system-pwdgroup"><primary sortas="e-/var/log/btmp">/var/log/btmp</primary></indexterm>
|
|---|
| 14 | <indexterm zone="ch-system-pwdgroup"><primary sortas="e-/var/log/lastlog">/var/log/lastlog</primary></indexterm>
|
|---|
| 15 | <indexterm zone="ch-system-pwdgroup"><primary sortas="e-/var/log/wtmp">/var/log/wtmp</primary></indexterm>
|
|---|
| 16 |
|
|---|
| 17 | <para>In order for user <emphasis>root</emphasis> to be able to login
|
|---|
| 18 | and for the name <quote>root</quote> to be recognized, there must be relevant
|
|---|
| 19 | entries in the <filename>/etc/passwd</filename> and
|
|---|
| 20 | <filename>/etc/group</filename> files.</para>
|
|---|
| 21 |
|
|---|
| 22 | <para>Create the <filename>/etc/passwd</filename> file by running the following
|
|---|
| 23 | command:</para>
|
|---|
| 24 |
|
|---|
| 25 | <screen><userinput>cat > /etc/passwd << "EOF"
|
|---|
| 26 | <literal>root:x:0:0:root:/root:/bin/bash</literal>
|
|---|
| 27 | EOF</userinput></screen>
|
|---|
| 28 |
|
|---|
| 29 | <para>The actual password for <emphasis>root</emphasis> (the <quote>x</quote>
|
|---|
| 30 | used here is just a placeholder) will be set later.</para>
|
|---|
| 31 |
|
|---|
| 32 | <para>Create the <filename>/etc/group</filename> file by running the following
|
|---|
| 33 | command:</para>
|
|---|
| 34 |
|
|---|
| 35 | <screen><userinput>cat > /etc/group << "EOF"
|
|---|
| 36 | <literal>root:x:0:
|
|---|
| 37 | bin:x:1:
|
|---|
| 38 | sys:x:2:
|
|---|
| 39 | kmem:x:3:
|
|---|
| 40 | tty:x:4:
|
|---|
| 41 | tape:x:5:
|
|---|
| 42 | daemon:x:6:
|
|---|
| 43 | floppy:x:7:
|
|---|
| 44 | disk:x:8:
|
|---|
| 45 | lp:x:9:
|
|---|
| 46 | dialout:x:10:
|
|---|
| 47 | audio:x:11:
|
|---|
| 48 | video:x:12:
|
|---|
| 49 | utmp:x:13:
|
|---|
| 50 | usb:x:14:
|
|---|
| 51 | cdrom:x:15:</literal>
|
|---|
| 52 | EOF</userinput></screen>
|
|---|
| 53 |
|
|---|
| 54 | <para>The created groups are not part of any standard—they are groups
|
|---|
| 55 | decided on in part by the requirements of the Udev configuration in the next
|
|---|
| 56 | section, and in part by common convention employed by a number of existing Linux
|
|---|
| 57 | distributions. The Linux Standard Base (LSB, available at <ulink
|
|---|
| 58 | url="http://www.linuxbase.org"/>) recommends only that, besides the group
|
|---|
| 59 | <quote>root</quote> with a Group ID (GID) of 0, a group <quote>bin</quote> with
|
|---|
| 60 | a GID of 1 be present. All other group names and GIDs can be chosen freely by
|
|---|
| 61 | the system administrator since well-written programs do not depend on GID
|
|---|
| 62 | numbers, but rather use the group's name.</para>
|
|---|
| 63 |
|
|---|
| 64 | <para>To remove the <quote>I have no name!</quote> prompt, start a new
|
|---|
| 65 | shell. Since a full Glibc was installed in <xref
|
|---|
| 66 | linkend="chapter-temporary-tools"/> and the
|
|---|
| 67 | <filename>/etc/passwd</filename> and <filename>/etc/group</filename>
|
|---|
| 68 | files have been created, user name and group name resolution will now
|
|---|
| 69 | work.</para>
|
|---|
| 70 |
|
|---|
| 71 | <screen role="nodump"><userinput>exec /tools/bin/bash --login +h</userinput></screen>
|
|---|
| 72 |
|
|---|
| 73 | <para>Note the use of the <parameter>+h</parameter> directive. This tells
|
|---|
| 74 | <command>bash</command> not to use its internal path hashing. Without this
|
|---|
| 75 | directive, <command>bash</command> would remember the paths to binaries it has
|
|---|
| 76 | executed. To ensure the use of the newly compiled binaries as soon as they are
|
|---|
| 77 | installed, the <parameter>+h</parameter> directive will be used for the duration
|
|---|
| 78 | of this chapter.</para>
|
|---|
| 79 |
|
|---|
| 80 | <beginpage/>
|
|---|
| 81 |
|
|---|
| 82 | <para>The <command>login</command>, <command>agetty</command>, and
|
|---|
| 83 | <command>init</command> programs (and others) use a number of log
|
|---|
| 84 | files to record information such as who was logged into the system and
|
|---|
| 85 | when. However, these programs will not write to the log files if they
|
|---|
| 86 | do not already exist. Initialize the log files and give them
|
|---|
| 87 | proper permissions:</para>
|
|---|
| 88 |
|
|---|
| 89 | <screen><userinput>touch /var/run/utmp /var/log/{btmp,lastlog,wtmp}
|
|---|
| 90 | chgrp utmp /var/run/utmp /var/log/lastlog
|
|---|
| 91 | chmod 664 /var/run/utmp /var/log/lastlog</userinput></screen>
|
|---|
| 92 |
|
|---|
| 93 | <para>The <filename>/var/run/utmp</filename> file records the users
|
|---|
| 94 | that are currently logged in. The <filename>/var/log/wtmp</filename>
|
|---|
| 95 | file records all logins and logouts. The
|
|---|
| 96 | <filename>/var/log/lastlog</filename> file records when
|
|---|
| 97 | each user last logged in. The <filename>/var/log/btmp</filename> file
|
|---|
| 98 | records the bad login attempts.</para>
|
|---|
| 99 |
|
|---|
| 100 | </sect1>
|
|---|
| 101 |
|
|---|
