Hi, I have a question regarding pam security/authentication: We have a target system which have another su password than our productions systems. However, using NIS it's possible to login with your private account on the target system. The home directories are mounted using NFS. But, when I now know the su password on the target system I have access to everybodies home directory using the 'su - somebody'. And this must not be possible! I have removed the 'pam_rootok' line from '/etc/pam.d/su', but this doesn't help. If I'm already su, I can become everybody without password authentication! This is default behaviour on SuSE, but it's *NOT* on Unix/Solaris. We want it to behave exactly as on Unix/Solaris... Can someone help me to fix this?

Met vriendelijke groet / Mit freundlichen Grüßen / Kind Regards,

H.J. ten Berge Test Engineer HITT Traffic Oude Apeldoornseweg 41-45 P.O. Box 717 NL-7300 AS, APELDOORN The Netherlands Telephone +31-55-543 26 34 Fax +31-55-543 25 53 E-mail mailto:berge@hitt.nl Internet http://www.hitt-traffic.nl