From owner-freebsd-stable@FreeBSD.ORG  Sat Jun  9 12:21:31 2012
Return-Path: <owner-freebsd-stable@FreeBSD.ORG>
Delivered-To: freebsd-stable@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id 05BE61065670
	for <freebsd-stable@freebsd.org>; Sat,  9 Jun 2012 12:21:31 +0000 (UTC)
	(envelope-from sodynet1@gmail.com)
Received: from mail-ob0-f182.google.com (mail-ob0-f182.google.com
	[209.85.214.182])
	by mx1.freebsd.org (Postfix) with ESMTP id B9C4E8FC0A
	for <freebsd-stable@freebsd.org>; Sat,  9 Jun 2012 12:21:30 +0000 (UTC)
Received: by obcni5 with SMTP id ni5so4943692obc.13
	for <freebsd-stable@freebsd.org>; Sat, 09 Jun 2012 05:21:30 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
	h=mime-version:in-reply-to:references:date:message-id:subject:from:to
	:cc:content-type;
	bh=U8RQBevb4xwsrOCJP7vnyst85E6kJcQU+2tnJhtJZC0=;
	b=YvWdxd1ad39E4tkPnXr0x3/VbZX4NqTfDrJp9G8d9rdF1UnkMM777QMAFTJ1KWCje6
	jIoRKNKM3KU+2JhLGAc9Ok+tmrgYdMQD7WQN3x6hsRSJ5qYMjcNcocvOpsJoGL5rgxLF
	3Ru4rjd+g/zlKLSjjysGnvweXJA7WeveaocV15ZEiOTWlabt5E0MzebJ4y4i1zHU7yGe
	F7P3bEgjApjTtxDAXbEhU4KLWLkZDygeInz8SlwMd0eZGlXMnSYkQutFdxo44VpfeEUD
	VXI7UA+RoulmlgGAPMu9JaiOwzOyqF7IyohKEAzFReUn7m6qBbdq4yqGCGNfiRIrGmvD
	oYUA==
MIME-Version: 1.0
Received: by 10.182.47.105 with SMTP id c9mr10772676obn.49.1339244489896; Sat,
	09 Jun 2012 05:21:29 -0700 (PDT)
Received: by 10.182.44.101 with HTTP; Sat, 9 Jun 2012 05:21:29 -0700 (PDT)
In-Reply-To: <CAOgwaMvp4AyLNdvENL9rXoP6D6w9JaTJr1ML5uxb28Tg9=W2uQ@mail.gmail.com>
References: <CAEW+ogYrUso=nqx4dUx0rhr9XUFMmSSMP-fxNa03pgj8tNF++g@mail.gmail.com>
	<201206091035.q59AZWFB058742@lurza.secnetix.de>
	<CAOgwaMvp4AyLNdvENL9rXoP6D6w9JaTJr1ML5uxb28Tg9=W2uQ@mail.gmail.com>
Date: Sat, 9 Jun 2012 15:21:29 +0300
Message-ID: <CAEW+ogZ3H+gP86zcme-nuucLyDHmUo05uZ3R7Jc1hBb_7FM4gg@mail.gmail.com>
From: Sami Halabi <sodynet1@gmail.com>
To: Mehmet Erol Sanliturk <m.e.sanliturk@gmail.com>,
	Oliver Fromme <olli@lurza.secnetix.de>
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: quoted-printable
X-Content-Filtered-By: Mailman/MimeDel 2.1.5
Cc: freebsd-stable@freebsd.org
Subject: Re: su problem
X-BeenThere: freebsd-stable@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Production branch of FreeBSD source code <freebsd-stable.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>, 
	<mailto:freebsd-stable-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-stable>
List-Post: <mailto:freebsd-stable@freebsd.org>
List-Help: <mailto:freebsd-stable-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-stable>,
	<mailto:freebsd-stable-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 09 Jun 2012 12:21:31 -0000

Hi,

%id
uid=3D1001(sody) gid=3D1001(sody) groups=3D1001(sody),0(wheel)
%

i have another account also id 1002 - sody2, also in group wheel.
i can ssh using user sody/sody2, however su doesn't work if i do: su sody2,
when i logged in with user sody.
it seems that su is broken somehow....

any ideas?

Thanks,
Sami

On Sat, Jun 9, 2012 at 2:07 PM, Mehmet Erol Sanliturk <
m.e.sanliturk@gmail.com> wrote:

>
>
> On Sat, Jun 9, 2012 at 3:35 AM, Oliver Fromme <olli@lurza.secnetix.de>wro=
te:
>
>> Sami Halabi <sodynet1@gmail.com> wrote:
>>  > I Just finished upgrade from FBSD-8.1-R fresh system to FBSD-8.3-p2.
>>  > once done, i created regular accounts, in wheel group.
>>  >
>>  > first all was okay, but suddenly i found my self blocked out, because=
 i
>>  > can't ssh as root, and i can't su either, when i su i get this:
>>  > %su -
>>  > Password:
>>  >
>>  > and it stuck in that state whitout givving me root shell #.
>>
>> What's the output from "id"?  Does it include "0(wheel)"?
>>
>> And are you 100% sure that you know the correct root password?
>> If you don't, you will have to drive to the machine and fix
>> it from the console, I'm afraid.  There's no other way, unless
>> you discover a yet-unknown local root exploit.  ;-)
>>
>> Best regards
>>   Oliver
>>
>>
>> --
>> Oliver Fromme, secnetix GmbH & Co. KG, Marktplatz 29, 85567 Grafing b. M=
.
>> Handelsregister: Registergericht Muenchen, HRA 74606,  Gesch=E4ftsfuehru=
ng:
>> secnetix Verwaltungsgesellsch. mbH, Handelsregister: Registergericht M=
=FCn-
>> chen, HRB 125758,  Gesch=E4ftsf=FChrer: Maik Bachmann, Olaf Erb, Ralf Ge=
bhart
>>
>> FreeBSD-Dienstleistungen, -Produkte und mehr:  http://www.secnetix.de/bs=
d
>>
>> With Perl you can manipulate text, interact with programs, talk over
>> networks, drive Web pages, perform arbitrary precision arithmetic,
>> and write programs that look like Snoopy swearing.
>>
>
>
>
> Please see ,
>
>
> http://www.freebsd.org/cgi/man.cgi?query=3Dlogin.access&sektion=3D5&aprop=
os=3D0&manpath=3DFreeBSD+9.0-RELEASE
>
> http://www.freebsd.org/cgi/man.cgi?query=3Dlogin&apropos=3D0&sektion=3D0&=
manpath=3DFreeBSD+9.0-RELEASE&arch=3Ddefault&format=3Dhtml
>
> http://www.freebsd.org/cgi/man.cgi?query=3Dtelnetd&sektion=3D8&apropos=3D=
0&manpath=3DFreeBSD+9.0-RELEASE
>
> http://www.freebsd.org/cgi/man.cgi?query=3Dlogin.conf&sektion=3D5&apropos=
=3D0&manpath=3DFreeBSD+9.0-RELEASE
>
> and , define remote login capability , otherwise the system will not
> permit remote root login because of it has dangerous security vulnerabili=
ty
> .
>
> Thank you very much .
>
>
> Mehmet Erol Sanliturk
>
>
>
>
>
>
>


--=20
Sami Halabi
Information Systems Engineer
NMS Projects Expert
FreeBSD SysAdmin Expert