User Management
This guide provides step-by-step instructions for managing user accounts in Kicksecure, enhancing system security and facilitating multi-user environments.
Add a New User[edit]
Optional!
To create a new user account named user2
, execute the following command:
Note: Replace user2
with the desired username for the new account.
sudo adduser user2
This command will prompt you to set a password and fill in additional information for the new user. Ensuring each user has a unique account helps maintain system security and organizes user-specific configurations.
Allow New User to Login to Virtual Console[edit]
Optional!
This step is necessary only if the new user account should have access to the Virtual Console for direct system interaction without a graphical interface. This can be useful for users that will also be members of the sudo
group for purposes of recovery.
(This is related to security feature Console Lockdown.)
sudo adduser user2 console
Allow New User Sudo Access[edit]
Optional!
If you want user2
to perform administrative tasks with elevated privileges, add them to the sudo
group.
See also Safely Use Root Commands for best practices when executing commands as root.
sudo adduser user2 sudo
Adding user2
to the sudo
group enables them to execute commands with root privileges by prefacing commands with sudo
. Use this responsibly to prevent unintended system changes.
Switch User[edit]
To switch to the new user account, follow these steps:
Start menu → Log Out
or Switch User
→ login
- Username:
user2
- Password: The password set during the creation of
user2
.
See also:
User Restrictions[edit]
TODO: document topics not covered yet
- restricted shell (any secure available?)
- libpam-chroot (might be weak?)
- /etc/security/limits.conf
- file system quotas
- snoopy
- Logging off idle users
Attribution[edit]
Kicksecure is an Implementation of the Securing Debian Manual. This chapter has been inspired by: Securing Debian Manual, chapter Limiting resource usage: the limits.conf file
Kicksecure is an Implementation of the Securing Debian Manual. This chapter has been inspired by: Securing Debian Manual, chapter Restricting users's access
Kicksecure is an Implementation of the Securing Debian Manual. This chapter has been inspired by: Securing Debian Manual, chapter User auditing
Kicksecure is an Implementation of the Securing Debian Manual. This chapter has been inspired by: Securing Debian Manual, chapter File system limits and control, Using quotas
We believe security software like Kicksecure needs to remain Open Source and independent. Would you help sustain and grow the project? Learn more about our 12 year success story and maybe DONATE!