Date: Thu, 22 Sep 2011 12:17:06 +0400 From: Lev Serebryakov <lev@FreeBSD.org> To: freebsd-security@freebsd.org Subject: pam_ldap and nss_ldap : checken and egg problem with "wheel" group and "su" utility Message-ID: <679126918.20110922121706@serebryakov.spb.ru>
next in thread | raw e-mail | index | archive | help
Hello, Freebsd-security.
I have chicken-adn-egg problem with wheel group and su utility when
all users but root are stored in LDAP.
wheel group should be in /etc/group to allow basic system services
to start before LDAP is available.
But when "wheel" is in /etc/group with only "root" member (as all
other members are in LDAP), system never takes "wheel" members from
LDAP (because /etc/group has priority) and "su" doesn't work!
What is proper way to resolve this problem?
--=20
// Black Lion AKA Lev Serebryakov <lev@FreeBSD.org>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?679126918.20110922121706>