From owner-freebsd-current  Sun Mar 10 16:53:29 1996
Return-Path: owner-current
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id QAA05037
          for current-outgoing; Sun, 10 Mar 1996 16:53:29 -0800 (PST)
Received: from veda.is (root@ubiq.veda.is [193.4.230.60])
          by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id QAA05029
          for <freebsd-current@freebsd.org>; Sun, 10 Mar 1996 16:53:20 -0800 (PST)
Received: (from adam@localhost) by veda.is (8.7.4/8.7.3) id AAA12708; Mon, 11 Mar 1996 00:52:31 GMT
Date: Mon, 11 Mar 1996 00:52:31 GMT
From: Adam David <adam@veda.is>
Message-Id: <199603110052.AAA12708@veda.is>
To: mark@grondar.ZA
Cc: freebsd-current@freebsd.org
Subject: Re: HEADS UP! Please check...
Newsgroups: list.freebsd.current
References: <199603091505.RAA17462@grumble.grondar.za>
X-Newsreader: NN version 6.5.0 #2 (NOV)
Sender: owner-current@freebsd.org
X-Loop: FreeBSD.org
Precedence: bulk

>I have just committed a change to su(1) to better integrate Kerberos
>into it. BUT, this missive does not apply only to those of you with
>Kerberos/eBones.

>The result of this change is that a user will not be prompted for
>a password again if they get the Kerberos password wrong.

ubiq [1] % su
su: kerberos: not in root's ACL.
ubiq [2] %

It used to prompt for a normal password and work. This is for all su to group 0.
Okay, kerberos is installed but not configured... but shouldn't this work?

--
Adam David <adam@veda.is>