problem using su to become root on SuSE 9
Hi everybody, I seem to miss an important detail here.I'm not able to use "su" to become root with a user that already is in the wheel group. su asks for the root password and I provide the correct root password and it says the password is wrong. Yet I am able to log in as root with the same root password. What am I missing? thanks, Tobias W. -- *************************************************** ____ _____ | _ \| ____| Tobias Weisserth | | | | _| tobias@weisserth.[de|com|net|org] _| |_| | |___ http://www.weisserth.org (_)____/|_____| Encrypted mail is welcome. Key and fingerprint: http://imprint.weisserth.org ***************************************************
On Monday 15 March 2004 16:30, Tobias Weisserth wrote:
Hi everybody,
I seem to miss an important detail here.I'm not able to use "su" to become root with a user that already is in the wheel group.
su asks for the root password and I provide the correct root password and it says the password is wrong. Yet I am able to log in as root with the same root password.
What am I missing?
That sounds exactly like what happens if you forgot to make "/bin/su" setuid root. Type: stat /bin/su I am sure you won't see a little "s" in the permissions which is most likely why you are having the problem. Type: chmod u+s /bin/su to give it the setuid bit. Then try the su again and it will work. If you were trying to limit which users can use "su" try: chgrp wheel /bin/su chmod 4750 /bin/su And that would restrict anyone's ability to run "su" to people in your "wheel" group. Also, since suse's permissions tool goes and changes permissions, you'll need to tell that tool that you want specific permissions to stay a certain way with /bin/su by editing /etc/permissions.local then at the bottom of the file on a line of its own put: /bin/su root.wheel 4750
Hi "user86", Am Di, den 16.03.2004 schrieb user86 um 04:34:
...
What am I missing?
That sounds exactly like what happens if you forgot to make "/bin/su" setuid root.
That's it. Many thanks. I hadn't thought of this... Tobias W. -- *************************************************** ____ _____ | _ \| ____| Tobias Weisserth | | | | _| tobias@weisserth.[de|com|net|org] _| |_| | |___ http://www.weisserth.org (_)____/|_____| Encrypted mail is welcome. Key and fingerprint: http://imprint.weisserth.org ***************************************************
participants (2)
-
Tobias Weisserth
-
user86