From owner-freebsd-questions@FreeBSD.ORG  Fri Oct 24 20:58:32 2008
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 2207C1065684
	for <freebsd-questions@freebsd.org>;
	Fri, 24 Oct 2008 20:58:32 +0000 (UTC)
	(envelope-from mdh_lists@yahoo.com)
Received: from web56807.mail.re3.yahoo.com (web56807.mail.re3.yahoo.com
	[66.196.97.81]) by mx1.freebsd.org (Postfix) with SMTP id AE4568FC1B
	for <freebsd-questions@freebsd.org>;
	Fri, 24 Oct 2008 20:58:31 +0000 (UTC)
	(envelope-from mdh_lists@yahoo.com)
Received: (qmail 70443 invoked by uid 60001); 24 Oct 2008 20:58:31 -0000
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com;
	h=X-YMail-OSG:Received:X-Mailer:Date:From:Reply-To:Subject:To:Cc:In-Reply-To:MIME-Version:Content-Type:Message-ID;
	b=u2qqDrjC4Yn1Q8JIw4Q0BlKYXkKtqncGV9xNP56HFahACK69mgVHVtKsShkclVEHq1suV8lPlS1k8p9jsslLf/1qo4L1/ZaDm7ef4SlauSt4ULJ+txFuMFAl45zzIloAhnQaQ5u5cdYUftYem+CzFN7OpajtAAcAtuAm45x9avA=;
X-YMail-OSG: LGwaRIgVM1lDcu47Yef3j2C5.bcv_HqUn0wsmHKJlNUrS4FzeLZ0yXPHLhAmOwlW82.294iyk9dVnGOQBcy7Jfhpydlz8_WlOr3PbI92CbtAUAdenDjZ2Ix4FuARrKStvkybpmPVcSlyjQSVd4cSJGo06w--
Received: from [71.61.220.126] by web56807.mail.re3.yahoo.com via HTTP;
	Fri, 24 Oct 2008 13:58:30 PDT
X-Mailer: YahooMailWebService/0.7.247.3
Date: Fri, 24 Oct 2008 13:58:30 -0700 (PDT)
From: mdh <mdh_lists@yahoo.com>
To: Jos Chrispijn <jos@webrz.net>
In-Reply-To: <490233D0.8040707@webrz.net>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Message-ID: <956261.69683.qm@web56807.mail.re3.yahoo.com>
Cc: freebsd-questions@freebsd.org
Subject: Re: root | su
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: mdh_lists@yahoo.com
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 24 Oct 2008 20:58:32 -0000

--- On Fri, 10/24/08, Jos Chrispijn <jos@webrz.net> wrote:
> From: Jos Chrispijn <jos@webrz.net>
> Subject: Re: root | su
> To: 
> Cc: freebsd-questions@freebsd.org
> Date: Friday, October 24, 2008, 4:45 PM
> > Since the person asking didn't give any details of
> what he wants to do, it's hard to say, but your point is
> correct regardless.  
> 
> The idea behind my question is this:
> I am responsible for a server on which an(other) idiot
> keeps loggin in 
> as user root, allthough he has his own user account and is
> part of the 
> wheel group. To prevent this nub to change any other user
> account in God 
> mode, I am searching for a solutions on this.

Disable direct access via whatever remote access method you use as root.  Thus the other individual will have to login as themself, and su to root.  If you do not wish them to su to root, change the root password.  

- mdh