Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
su - ?
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Duplicate Threads
View previous topic :: View next topic  
Author Message
Rroet
Apprentice
Apprentice


Joined: 27 May 2002
Posts: 176
Location: The Hague, The Netherlands

PostPosted: Mon May 27, 2002 6:12 pm    Post subject: su - ? Reply with quote

Hia,

I've created a user with normal rights, but this user isn't allowed to run 'su -' to get you know which status... ;)

I find this rather disturbing because now I can't login as myself (which I do over NFS) and just get superuser status to update a package or 2 via the emerge system :oops:


Please help...
Back to top
View user's profile Send private message
pjp
Administrator
Administrator


Joined: 16 Apr 2002
Posts: 20053

PostPosted: Mon May 27, 2002 6:18 pm    Post subject: Reply with quote

Is the user in the wheel group?
Back to top
View user's profile Send private message
Rroet
Apprentice
Apprentice


Joined: 27 May 2002
Posts: 176
Location: The Hague, The Netherlands

PostPosted: Mon May 27, 2002 6:30 pm    Post subject: Reply with quote

no the user isn't in the Wheel group. I didn't know it needed that. 8O

After changing it and re-logging, it didn't work ?!
Back to top
View user's profile Send private message
pjp
Administrator
Administrator


Joined: 16 Apr 2002
Posts: 20053

PostPosted: Mon May 27, 2002 6:34 pm    Post subject: Reply with quote

Interesting. wheel has been the only reason I've noticed as causing problems. I think it has been posted about numerous times. If you haven't yet, you might search and see if someone else had the same problem. I seem to recall PAM being mentioned, but I don't remember exactly.
Back to top
View user's profile Send private message
fghellar
Bodhisattva
Bodhisattva


Joined: 10 Apr 2002
Posts: 856
Location: Porto Alegre, BR

PostPosted: Mon May 27, 2002 6:35 pm    Post subject: Reply with quote

Rroet wrote:
I didn't know it needed that. 8O

That's what the documentation was written for.

Rroet wrote:
After changing it and re-logging, it didn't work ?!

You probably need to reboot.
_________________
| www.gentoo.org | www.tldp.org | www.google.com |
Back to top
View user's profile Send private message
Rroet
Apprentice
Apprentice


Joined: 27 May 2002
Posts: 176
Location: The Hague, The Netherlands

PostPosted: Mon May 27, 2002 6:41 pm    Post subject: Reply with quote

I think ypserv took care of that. I changed my user to the wheel group and logged on again. That should fix it.
Back to top
View user's profile Send private message
Nitro
Bodhisattva
Bodhisattva


Joined: 08 Apr 2002
Posts: 661
Location: San Francisco

PostPosted: Mon May 27, 2002 11:13 pm    Post subject: Reply with quote

fghellar wrote:

Rroet wrote:
After changing it and re-logging, it didn't work ?!

You probably need to reboot.

You don't need to reboot. You just need to re-login. To double check you current user's id and groups run 'id'. I'm not jumping on fgehllar, I just wanted to clarify that. Why hit a nail with a sledgeahmmer?

Rroet wrote:
I think ypserv took care of that. I changed my user to the wheel group and logged on again. That should fix it.

Might want to take a peek at using LDAP for authentication, I think it works much better in my opinion. Just figured I'd mention it.
_________________
- Kyle Manna

Please, please SEARCH before posting.

There are three kinds of people in the world: those who can count, and those who can't.
Back to top
View user's profile Send private message
fghellar
Bodhisattva
Bodhisattva


Joined: 10 Apr 2002
Posts: 856
Location: Porto Alegre, BR

PostPosted: Tue May 28, 2002 2:50 am    Post subject: Reply with quote

Nitro wrote:
fghellar wrote:
You probably need to reboot.

You don't need to reboot. You just need to re-login.

Thanks for the correction. I said that because I think I read somewhere that group information is loaded only once, at boot time. I can't seem to find it any more, though...
_________________
| www.gentoo.org | www.tldp.org | www.google.com |
Back to top
View user's profile Send private message
pjp
Administrator
Administrator


Joined: 16 Apr 2002
Posts: 20053

PostPosted: Tue May 28, 2002 4:43 am    Post subject: Reply with quote

Nitro wrote:
Why hit a nail with a sledgeahmmer?
Sledgehammer probably takes one hit, whereas the hammer would take several? :lol: just joking around
Back to top
View user's profile Send private message
Nitro
Bodhisattva
Bodhisattva


Joined: 08 Apr 2002
Posts: 661
Location: San Francisco

PostPosted: Tue May 28, 2002 9:31 pm    Post subject: Reply with quote

kanuslupus wrote:
Nitro wrote:
Why hit a nail with a sledgeahmmer?
Sledgehammer probably takes one hit, whereas the hammer would take several? :lol: just joking around


Well, rebooting, like the sledgehammer, would work without a doubt, right. :)
_________________
- Kyle Manna

Please, please SEARCH before posting.

There are three kinds of people in the world: those who can count, and those who can't.
Back to top
View user's profile Send private message
kabau
n00b
n00b


Joined: 16 May 2002
Posts: 6
Location: Austin, TX

PostPosted: Fri May 31, 2002 2:23 am    Post subject: Removing the wheel restriction Reply with quote

To remove the wheel group restriction to su remove:

auth required pam_wheel.so use_uid

from /etc/pam.d/su.

Also, I recommend using sudo or super to do things as root. Much more secure and gives you a log of what commands get executed by root.

kabau
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Duplicate Threads All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum