|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
From: Bruce A. Locke (blocke
shivan.org)Date: Fri Nov 09 2001 - 19:17:13 CST
On Fri, 2001-11-09 at 22:57, Seth Arnold wrote:
>
> I think that you can emulate this with the traditional permissions. Set
> su to root:wheel, 04550, and add users to group 'wheel' as appropriate.
>
Recent versions of su on Linux do support the wheel group concept
through pam... I've seen quite a few "minor" distributions support it
"out of the box".
Contents of /etc/pam.d/su on my system:
auth required pam_wheel.so use_uid
auth sufficient pam_rootok.so
auth required pam_pwdb.so nullok
account required pam_pwdb.so
password required pam_pwdb.so md5
session required pam_pwdb.so debug
On my system users cannot su unless they are the wheel group. (BTW, I
am using Gentoo Linux with shadow-20001016.
Hope this helps...
--Bruce A. Locke blocke
"Those that would give up a necessary freedom for temporary safety deserve neither freedom nor safety." -- Ben Franklin
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]