Mailinglist Archive: opensuse-security (423 mails)
| < Previous | Next > |
Re: [suse-security] su to root
- From: Yuri Robbers <yuri@xxxxxxxxxxxxxxxxxxxx>
- Date: Thu, 22 Mar 2001 23:17:36 +0100 (MET)
- Message-id: <Pine.LNX.4.21.0103222312220.30489-100000@xxxxxxxxxxxxxxxxxxxx>
Hi!
> >I cannot try this now to see if it still works, but in the past I've used
> >the following workaround for this: use "su -" to su to a member of the
> >wheel group (the "-" makes this a login shell),
>
> That worked.
I'm glad! I need that very often :o)
> >and then use either a "su" or a "su -" to become root.
>
> But that failed, reporting incorrect password.
Ok good. It might be a problem for some people, but I think it's safer
this way... it would be no use to allow only members of wheel to su to
root if anyone could su to wheel and then to root. Apart from adding
an extra password between the status of mortal user and root of course.
> >I don't know how to block this approach,
>
> My test indicates it's already blocked.
Groovy. Thanks.
Ciao,
Yuri.
--------------------------------------------------------------------------
Yuri Robbers phone : +31-71-527-4966
Leiden University fax : +31-71-527-4900
Institute for Theoretical Biology email : robbers@xxxxxxxxxxxxxxxxxxxx
Kaiserstraat 63
2311 GP Leiden PGP 5.0 public key available:
the Netherlands Check your favourite hkp server.
--------------------------------------------------------------------------
| < Previous | Next > |