Supporting users on Linux and Unix
Q: If you're the administrator on a Linux or Unix system and you want to help a user look after some of the files and directories, or run applications, under their own account, what's the best login to use?
A: You should be logged in as if you were the user him/herself
A: Because you want the ownerships of any file system objects you create, and processes, and any logs to be assigned back to that user, and you want the environment (PATH etc) to be the one that the user would be using as well.
Q: Does this mean I have to ask the user to give me his / her password then?
A: No. certainly not. Here's what you should do:
a) Log in as normal through YOUR OWN user account
b) Use the command su -
to become the administrator ... and, yes, you need the root password to do this
c) Then use the command su - george
to become the user george. You will NOT be asked for George's password, since the administrator can "su" to any other account without giving one - he/she has already logged in and gained sufficient authority via the root account.
Q: Is that real a minus sign after the su command? Is it needed?
A: Yes, it is, yes it is. It tells the su command to set up a new environment for you using the settings for the user that you're about to become. Without it, you'll be running with your original users environment, but with the new user's authorities. Occasionally that's convenient if you have a lot of aliases but it can leave some huge security loopholes and it means that you won't be seeing the system in the same way the user will, meaning that you won't (for example) be able to exactly reproduce any problems that he's calling for support on. (written 2006-04-13, updated 2006-06-05)
Associated topics are indexed as below, or enter http://melksh.am/nnnn for individual articlesA161 - Web Application Deployment - Users and Groups 
Linux Web Server - User Roles, User Accounts, and shared administration - (2013-03-16) 
su or su - ... what is the difference? - (2010-02-17) 
Root is root for a reason! - (2009-11-03) 
Mistaken identity? - (2009-07-22) 
Always use su with minus. And where do programs come from? - (2009-05-27) 
Choosing a railway station fairly in PHP - (2009-04-04) 
Ask the Tutor - Open Source forum - (2009-03-25) 
Ruby, Perl, Linux, MySQL - some training notes - (2008-11-23) 
sstrwxrwxrwx - Unix and Linux file permissions - (2008-11-23) 
The Longest Possible Day - (2008-08-26) 
Looking for files with certain characteristics (Linux / Unix) - (2008-05-22) 
User and Group settings for Apache httpd web server - (2008-04-22) 
Setting up a new user - Linux or Unix - (2008-03-26) 
File permissions of Linux and Unix systems - (2005-08-31) 
Functions and commands with dangerous names - (2005-08-11)
Some other Articles
Presentation, Business and Persistence layers in Perl and PHPName Services - telling your LDAP from your DNSA couple of days awayStaying in the countrySupporting users on Linux and UnixIran has enriched uranium ...Mirroring a dynamic siteLetter BoxesMore or less on the edge of the pageWhy are maps rarely to scale?
4213 posts, page by page
Link to page ... 1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14, 15, 16, 17, 18, 19, 20, 21, 22, 23, 24, 25, 26, 27, 28, 29, 30, 31, 32, 33, 34, 35, 36, 37, 38, 39, 40, 41, 42, 43, 44, 45, 46, 47, 48, 49, 50, 51, 52, 53, 54, 55, 56, 57, 58, 59, 60, 61, 62, 63, 64, 65, 66, 67, 68, 69, 70, 71, 72, 73, 74, 75, 76, 77, 78, 79, 80, 81, 82, 83, 84, 85 at 50 posts per page
This is a page archived from The Horse's Mouth at
the diary and writings of Graham Ellis.
Every attempt was made to provide current information at the time the
page was written, but things do move forward in our business - new software
releases, price changes, new techniques. Please check back via
our main site for current courses,
prices, versions, etc - any mention of a price in "The Horse's Mouth"
cannot be taken as an offer to supply at that price.
Link to Ezine home page (for reading).
Link to Blogging home page (to add comments).