su - ?

Rroet · Posted: Mon May 27, 2002 6:12 pm Post subject: su - ?

Hia,

I've created a user with normal rights, but this user isn't allowed to run 'su -' to get you know which status...

I find this rather disturbing because now I can't login as myself (which I do over NFS) and just get superuser status to update a package or 2 via the emerge system :oops:

Please help...

pjp · Posted: Mon May 27, 2002 6:18 pm Post subject:

Is the user in the wheel group?

Rroet · Posted: Mon May 27, 2002 6:30 pm Post subject:

no the user isn't in the Wheel group. I didn't know it needed that.

After changing it and re-logging, it didn't work ?!

pjp · Posted: Mon May 27, 2002 6:34 pm Post subject:

Interesting. wheel has been the only reason I've noticed as causing problems. I think it has been posted about numerous times. If you haven't yet, you might search and see if someone else had the same problem. I seem to recall PAM being mentioned, but I don't remember exactly.

fghellar · Posted: Mon May 27, 2002 6:35 pm Post subject:

Rroet · Posted: Mon May 27, 2002 6:41 pm Post subject:

I think ypserv took care of that. I changed my user to the wheel group and logged on again. That should fix it.

Nitro · Posted: Mon May 27, 2002 11:13 pm Post subject:

fghellar · Posted: Tue May 28, 2002 2:50 am Post subject:

pjp · Posted: Tue May 28, 2002 4:43 am Post subject:

Nitro · Posted: Tue May 28, 2002 9:31 pm Post subject:

kabau · n00b Joined: 16 May 2002 Posts: 6 Location: Austin, TX

To remove the wheel group restriction to su remove:

auth required pam_wheel.so use_uid

from /etc/pam.d/su.

Also, I recommend using sudo or super to do things as root. Much more secure and gives you a log of what commands get executed by root.

kabau