Aaron Kulkis wrote:
James D. Parra wrote:
Hello,
Is there a way to control which user accounts can use 'su' when using ssh? I want only a couple of users to be able to change to root when using ssh.
Don't use su... use sudo.
that way, you can control EXACTLY which commands they can run (for example, that way, a user can't go and delete some other user's account, or make his own "extra" account, or any other item from an unending list of mayhem).
There's a reason that YOU are the administrator and they aren't. Therefore, they have no business being allowed to su to root when sudo is available for ue.
What I have done, is create a sudo directory for a user, where they have rights to everything in it. I then create a symlink from that directory to the executable. Though I haven't done it, I believe you can also assign sudo rights to groups and then make a user a member of that group. -- Use OpenOffice.org http://www.openoffice.org -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org