https://bugzilla.novell.com/show_bug.cgi?id=331043#c2 Ludwig Nussel <lnussel@novell.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |INVALID --- Comment #2 from Ludwig Nussel <lnussel@novell.com> 2007-10-08 02:05:43 MST --- su uses pam's standard misc_conv function to acquire the password. Even if that one wouldn't read from stdin but from the tty only you could still use e.g. 'expect' to script entering the password. So I don't share the security concerns. If you don't trust your users you can try pam_wheel or pam_tally to restrict use of 'su'. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.