Date: Fri, 14 Nov 1997 17:54:02 -0800 (PST) From: Doug White <dwhite@gdi.uoregon.edu> To: Randy Katz <randyk@ccsales.com> Cc: questions@FreeBSD.ORG Subject: Re: PREVENT SU TO OTHER USER Message-ID: <Pine.BSF.3.96.971114175057.4473K-100000@gdi.uoregon.edu> In-Reply-To: <Pine.BSF.3.91.971114115648.28711A-100000@ccsales.ccsales.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, 14 Nov 1997, Randy Katz wrote: > Is there a way to prevent a certain user from being able to su to another > regular user (non-root) in FreeBSD? Um, don't put them in the wheel group? Or use permissions by exclusion: put them in a group, ie, `bogus', chown su to root:bogus, and chmod g-rx su. So the ls -l will look like: -r-s---r-x 1 root bogus 16384 Oct 20 09:36 /usr/bin/su FreeBSD always uses the closest permissions, so it'll see the group bogus and use those, and viola, `permission denied.' Doug White | University of Oregon Internet: dwhite@resnet.uoregon.edu | Residence Networking Assistant http://gladstone.uoregon.edu/~dwhite | Computer Science Major
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.3.96.971114175057.4473K-100000>