From owner-freebsd-questions  Wed Oct  4 10: 3:21 2000
Delivered-To: freebsd-questions@freebsd.org
Received: from devnulltech.com (xd84b4547.ip.ggn.net [216.75.69.71])
	by hub.freebsd.org (Postfix) with ESMTP id 7D44037B502
	for <questions@FreeBSD.ORG>; Wed,  4 Oct 2000 10:03:14 -0700 (PDT)
Received: (from roman@localhost)
	by devnulltech.com (8.9.3/8.9.3) id NAA27264;
	Wed, 4 Oct 2000 13:05:20 GMT
	(envelope-from roman)
Date: Wed, 4 Oct 2000 13:05:20 +0000
From: roman <roman@devnulltech.com>
To: "Dan Mahoney, System Admin" <danm@prime.gushi.org>
Cc: questions@FreeBSD.ORG
Subject: Re: Securing SU
Message-ID: <20001004130520.A25331@nougat.stickynetworks.com>
References: <Pine.BSF.4.21.0010041149160.28646-100000@prime.gushi.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
X-Mailer: Mutt 1.0i
In-Reply-To: <Pine.BSF.4.21.0010041149160.28646-100000@prime.gushi.org>; from danm@prime.gushi.org on Wed, Oct 04, 2000 at 11:57:50AM -0400
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

> I was wondering if there was a way to configure su so that it would
> disallow a user access if they're telnetted in.  (but, say, allow them if
> they have sshed in).

what about sudo? 

better than su, because you get to control who gets to do what as root. 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message