On Thu, Mar 30, 2000 at 12:18:52PM +0100, Colin Watson wrote: > Brian Clark <brianj@ais.ais-gwd.com> wrote: > >I ended up just adding sysadmin to staff, then > > > >% /bin/chgrp staff /bin/su; /bin/chmod 4750 /bin/su > > Make sure you let suidmanager know about that (using suidregister) or > you might find /bin/su's permissions changing back next time you upgrade > the login package. sooner then that, you will find the permissions changed back the next time cron.daily get fired off ;-) suidregister /bin/su root staff 4754 should do the trick. i don't see the point in making su non-readable just non-executable. -- Ethan Benson http://www.alaska.net/~erbenson/
Attachment:
pgpOiHb_6KjQy.pgp
Description: PGP signature