en/handbook/hb-install-finalise.xml

<?xml version='1.0' encoding='UTF-8'?>
<!DOCTYPE sections SYSTEM "/dtd/book.dtd">

<!-- The content of this document is licensed under the CC-BY-SA license -->
<!-- See http://creativecommons.org/licenses/by-sa/1.0 -->

<!-- $Header: /var/cvsroot/gentoo/xml/htdocs/doc/en/handbook/hb-install-finalise.xml,v 1.39 2005/01/04 18:11:20 swift Exp $ -->

<sections>

<version>1.36</version>
<date>2005-03-21</date>

<section>
<title>User Administration</title>
<subsection>
<title>Adding a User for Daily Use</title>
<body>

<p>
Working as root on a Unix/Linux system is <e>dangerous</e> and should be avoided
as much as possible. Therefore it is <e>strongly</e> recommended to add a user 
for day-to-day use.
</p>

<p>
The groups the user is member of define what activities the user can perform.
The following table lists a number of important groups you might wish to use:
</p>

<table>
<tr>
  <th>Group</th>
  <th>Description</th>
</tr>
<tr>
  <ti>audio</ti>
  <ti>be able to access the audio devices</ti>
</tr>
<tr>
  <ti>cdrom</ti>
  <ti>be able to directly access optical devices</ti>
</tr>
<tr>
  <ti>floppy</ti>
  <ti>be able to directly access floppy devices</ti>
</tr>
<tr>
  <ti>games</ti>
  <ti>be able to play games</ti>
</tr>
<tr>
  <ti>usb</ti>
  <ti>be able to access USB devices</ti>
</tr>
<tr>
  <ti>video</ti>
  <ti>
    be able to access video capturing hardware and doing hardware
    acceleration
  </ti>
</tr>
<tr>
  <ti>wheel</ti>
  <ti>be able to use <c>su</c></ti>
</tr>
</table>

<p>
For instance, to create a user called <c>john</c> who is member of the
<c>wheel</c>, <c>users</c> and <c>audio</c> groups, log in as root first 
(only root can create users) and run <c>useradd</c>:
</p>

<pre caption="Adding a user for day-to-day use">
Login: <i>root</i>
Password: <comment>(Your root password)</comment>

# <i>useradd -m -G users,wheel,audio -s /bin/bash john</i>
# <i>passwd john</i>
Password: <comment>(Enter the password for john)</comment>
Re-enter password: <comment>(Re-enter the password to verify)</comment>
</pre>

<p>
If a user ever needs to perform some task as root, they can use <c>su -</c>
to temporarily receive root privileges. Another way is to use the <c>sudo</c> 
package which is, if correctly configured, very secure.
</p>

</body>
</subsection>
</section>
</sections>
1	<?xml version='1.0' encoding='UTF-8'?>
2	<!DOCTYPE sections SYSTEM "/dtd/book.dtd">
3
4	<!-- The content of this document is licensed under the CC-BY-SA license -->
5	<!-- See http://creativecommons.org/licenses/by-sa/1.0 -->
6
7	<!-- $Header: /var/cvsroot/gentoo/xml/htdocs/doc/en/handbook/hb-install-finalise.xml,v 1.39 2005/01/04 18:11:20 swift Exp $ -->
8
9	<sections>
10
11	<version>1.36</version>
12	<date>2005-03-21</date>
13
14	<section>
15	<title>User Administration</title>
16	<subsection>
17	<title>Adding a User for Daily Use</title>
18	<body>
19
20	<p>
21	Working as root on a Unix/Linux system is <e>dangerous</e> and should be avoided
22	as much as possible. Therefore it is <e>strongly</e> recommended to add a user
23	for day-to-day use.
24	</p>
25
26	<p>
27	The groups the user is member of define what activities the user can perform.
28	The following table lists a number of important groups you might wish to use:
29	</p>
30
31	<table>
32	<tr>
33	<th>Group</th>
34	<th>Description</th>
35	</tr>
36	<tr>
37	<ti>audio</ti>
38	<ti>be able to access the audio devices</ti>
39	</tr>
40	<tr>
41	<ti>cdrom</ti>
42	<ti>be able to directly access optical devices</ti>
43	</tr>
44	<tr>
45	<ti>floppy</ti>
46	<ti>be able to directly access floppy devices</ti>
47	</tr>
48	<tr>
49	<ti>games</ti>
50	<ti>be able to play games</ti>
51	</tr>
52	<tr>
53	<ti>usb</ti>
54	<ti>be able to access USB devices</ti>
55	</tr>
56	<tr>
57	<ti>video</ti>
58	<ti>
59	be able to access video capturing hardware and doing hardware
60	acceleration
61	</ti>
62	</tr>
63	<tr>
64	<ti>wheel</ti>
65	<ti>be able to use <c>su</c></ti>
66	</tr>
67	</table>
68
69	<p>
70	For instance, to create a user called <c>john</c> who is member of the
71	<c>wheel</c>, <c>users</c> and <c>audio</c> groups, log in as root first
72	(only root can create users) and run <c>useradd</c>:
73	</p>
74
75	<pre caption="Adding a user for day-to-day use">
76	Login: <i>root</i>
77	Password: <comment>(Your root password)</comment>
78
79	# <i>useradd -m -G users,wheel,audio -s /bin/bash john</i>
80	# <i>passwd john</i>
81	Password: <comment>(Enter the password for john)</comment>
82	Re-enter password: <comment>(Re-enter the password to verify)</comment>
83	</pre>
84
85	<p>
86	If a user ever needs to perform some task as root, they can use <c>su -</c>
87	to temporarily receive root privileges. Another way is to use the <c>sudo</c>
88	package which is, if correctly configured, very secure.
89	</p>
90
91	</body>
92	</subsection>
93	</section>
94	</sections>