root用户可以访问自己的家目录,访问配置文件,访问普通用户的家目录
普通用户只能访问自己的家目录和root用户开放的目录
普通用户之间无法访问对方的家目录
创建用户,用id查看用户信息,root的uid是0,如果把普通用户uid改为0,则该普通用户变为root用户
创建普通用户,/home下会创建普通用户的家目录
/etc/passwd会多出来用户信息
/etc/shadow会有用户密码信息
[root@node01 ~]# useradd wilson [root@node01 ~]# id root uid=0(root) gid=0(root) groups=0(root) [root@node01 ~]# id wilson uid=1000(wilson) gid=1000(wilson) groups=1000(wilson) [root@node01 ~]# id abc id: abc: no such user [root@node01 ~]# [root@node01 ~]# ls /root backup bin downloads [root@node01 ~]# ls /home/wilson [root@node01 ~]# ls -a /home/wilson . .. .bash_logout .bash_profile .bashrc [root@node01 ~]# ls /etc/passwd /etc/passwd [root@node01 ~]# tail -10 /etc/passwd hive:x:987:984:Hive:/var/lib/hive:/sbin/nologin kafka:x:986:983:Kafka:/var/lib/kafka:/sbin/nologin kms:x:985:982:Hadoop KMS:/var/lib/hadoop-kms:/sbin/nologin yarn:x:984:981:Hadoop Yarn:/var/lib/hadoop-yarn:/sbin/nologin oozie:x:983:980:Oozie User:/var/lib/oozie:/sbin/nologin kudu:x:982:979:Kudu:/var/lib/kudu:/sbin/nologin hbase:x:981:978:HBase:/var/lib/hbase:/sbin/nologin impala:x:980:977:Impala:/var/lib/impala:/sbin/nologin spark:x:979:976:Spark:/var/lib/spark:/sbin/nologin wilson:x:1000:1000::/home/wilson:/bin/bash [root@node01 ~]# tail -10 /etc/shadow hive:!!:18220:::::: kafka:!!:18220:::::: kms:!!:18220:::::: yarn:!!:18220:::::: oozie:!!:18220:::::: kudu:!!:18220:::::: hbase:!!:18220:::::: impala:!!:18220:::::: spark:!!:18220:::::: wilson:!!:18224:0:99999:7:::
设置密码
[root@node01 ~]# passwd wilson Changing password for user wilson. New password: BAD PASSWORD: The password fails the dictionary check - it is too simplistic/systematic Retype new password: passwd: all authentication tokens updated successfully.
删除用户,如果不加-r,仍会保留用户的家目录
[root@node01 ~]# userdel wilson [root@node01 ~]# ls /home wilson [root@node01 ~]# ls /home/ -l total 4 drwx------ 2 1000 1000 4096 Nov 24 12:13 wilson [root@node01 ~]# userdel -r wilson userdel: user 'wilson' does not exist [root@node01 ~]# ls /home wilson [root@node01 ~]# useradd wilson useradd: warning: the home directory already exists. Not copying any file from skel directory into it. Creating mailbox file: File exists [root@node01 ~]# userdel -r wilson [root@node01 ~]# ls /home
usermod -d可以改变用户的家目录
[root@node01 ~]# man usermod [root@node01 ~]# useradd wilson [root@node01 ~]# usermod -d /home/w1 wilson
用户组管理
创建用户的时候指定用户组 useradd -g
[root@node01 ~]# groupadd group1 [root@node01 ~]# usermod -g group1 wilson [root@node01 ~]# id wilson uid=1000(wilson) gid=1001(group1) groups=1001(group1) [root@node01 ~]# useradd -g group1 user1 [root@node01 ~]# id user1 uid=1001(user1) gid=1001(group1) groups=1001(group1)
临时切换用户 su
[root@node01 ~]# su - user1 Last login: Sun Nov 24 12:29:01 CST 2019 on pts/0
- 是在切换用户的同时,运行的环境也进行切换
无法访问root的家目录
[user1@node01 ~]$ cd /root
-bash: cd: /root: Permission denied
不带-是不完全的切换
[root@node01 ~]# su user1 [user1@node01 root]$ pwd /root [user1@node01 root]$ ls ls: cannot open directory .: Permission denied
在root的家目录下,但仍没有权限访问