Re: Admin group?

To: Debian-user <debian-user@lists.debian.org>
Subject: Re: Admin group?
From: Brad <lists@anomie.dhis.org>
Date: Wed, 27 Oct 1999 00:24:00 -0500 (CDT)
Message-id: <[🔎] Pine.LNX.4.10.9910270022270.27200-100000@anomie.local>
In-reply-to: <[🔎] 3815144E.7F39EEC2@umr.edu>

-----BEGIN PGP SIGNED MESSAGE-----

On Mon, 25 Oct 1999, Philip Thiem wrote:

> Brad wrote:
> > The way wheel works is that any user can use su, but only users in the
> > wheel group are allowed to su to root (uid 0). Your suggestion will not
> > let any user besides those in adm use su at all (which may be what you
> > want).
> > 
> > The programs that don't support wheel then are ones that don't have the
> > code for checking the group membership.
> 
> I would recommend secure-su then.
> and used in the configuration file
> root:ALL EXCEPT GROUP [wheel|adm] DENY

With the pamization of potato, IIRC you can just plug a wheel-group pam
module into the regular potato su. Of course, this doesn't help
immediately if you're staying with slink ;)


- -- 
  finger for PGP public key.

-----BEGIN PGP SIGNATURE-----
Version: 2.6.3ia
Charset: noconv

iQCVAwUBOBaMc77M/9WKZLW5AQG6zQP/QaFxJZxQKTRLWgOrZlFYlVVRLDakKXIP
C/tuK4JDu/nySSwC+qA5lXnDpFCSbxXfO+Hm9xMgQAKa/+nqTWhvkC5RU4zPt1fK
0OTsa+EX2RB8KRQDrtd3QdJ5aj/gRTMTvm/VpUdkCrSqrnXg0k07BkcXzeQR3RkC
PTAevyLWTWo=
=nEyz
-----END PGP SIGNATURE-----

Reply to:

References:
- Re: Admin group?
  - From: Philip Thiem <ptt@umr.edu>

Prev by Date: just curious about Debian vs Redhat
Next by Date: [no subject]
Previous by thread: Re: Admin group?
Next by thread: Re: Admin group?
Index(es):
- Date
- Thread