There was some discussion a few weeks ago about limiting root access to one group, as is done on many other flavours of Unix. I did some experiments on SuSE 6.4, and also a bit of searching on the net, but still haven't found a solution. One suggestion was to use /etc/suauth. My experiments, and also some hints I dug up from old message archives, suggest that /etc/suauth is ignored on SuSE Linux. If this is true, please could SuSE remove the man page from the distribution! The other suggestion was to use PAM. I managed to find a manual which appeared to have a suitable example, and I put the line auth required /lib/security/pam_wheel.so group=root in /etc/pam.d/su . But this had too much effect! It stopped anybody using su, including members of group root. Has anyone managed to achieve this simple security precaution? Bob ============================================================== Bob Vickers R.Vickers@dcs.rhul.ac.uk Dept of Computer Science, Royal Holloway, University of London WWW: http://www.cs.rhul.ac.uk/home/bobv Phone: +44 1784 443691