root gdm login enabled as default in RHEL 6.2

Comments 1

I just did a clean install of RHEL 6.2 workstation and created an empty /etc/securetty.

On a whim, I decided to see if root could login via the graphical login (even though I'm used to root gdm login being disabled by default). I was surprised to see that I could login as root via the graphical login. This seems a security risk to me.

I double-checked that /etc/pam.d/gdm had the following:

auth required pam_succeed_if.so user != root quiet

This should disable root gdm login but it doesn't.

Not sure if RH meant for root gdm login to be enabled as a default. Documentation isn't clear but it would seem strange to me if this is the desired default.

Any advice on how to disable root gdm login would be appreciated.

Started 2011-12-29T18:13:20+00:00 by

Steven Teo

Community Member 20 points

Responses

Red Hat Guru 4649 points

30 December 2011 5:15 AM

Sadique Puthen

If you are doing password authentication, you need to check https://access.redhat.com/kb/docs/DOC-63846

Welcome! Check out the Getting Started with Red Hat page for quick tours and guides for common tasks.

Log in to Your Red Hat Account

Red Hat Account

Customer Portal

Select Your Language

Infrastructure and Management

Cloud Computing

Storage

JBoss Development and Management

JBoss Integration and Automation

Mobile

Services

Tools

Red Hat Product Security Center

Security Updates

Resources

Customer Portal Community

Customer Events

Stories

root gdm login enabled as default in RHEL 6.2

Responses