From owner-freebsd-hackers Tue Aug 6 20:41:57 1996 Return-Path: owner-hackers Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id UAA00580 for hackers-outgoing; Tue, 6 Aug 1996 20:41:57 -0700 (PDT) Received: from ec.camitel.com ([206.231.123.130]) by freefall.freebsd.org (8.7.5/8.7.3) with ESMTP id UAA00570 for ; Tue, 6 Aug 1996 20:41:51 -0700 (PDT) Received: from jaba.ec.camitel.com (m0.ec.camitel.com [206.231.123.150]) by ec.camitel.com (8.7.5/8.7.3) with SMTP id XAA01419; Tue, 6 Aug 1996 23:39:58 GMT Message-ID: X-Mailer: XFMail 0.5-alpha [p0] on FreeBSD Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 8bit MIME-Version: 1.0 In-Reply-To: Date: Tue, 06 Aug 1996 19:23:50 -0000 () Organization: Labyrinthe Bbs 8-) From: Luc Chamberland To: Tom Samplonius Subject: Re: su question Cc: pius@ienet.com, freebsd-hackers@FreeBSD.ORG Sender: owner-hackers@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On 02-Aug-96 Tom Samplonius wrote: >>On Fri, 2 Aug 1996 pius@ienet.com wrote: > >> Just out of curiosity, >> >> when someone does an su to root, why does su check that the >> username is explicitly listed as a member of group 0 in /etc/group >> instead of just making sure that the user is part of that group >> with getgroups(2)? In other words, why should a user with a group >> ID of 0 in /etc/passwd also have to be listed as a member of wheel >> in /etc/group in order to su to root? >> >> Thanks, >> Pius > > For security reasons. > >Tom I'm curius!.... Can you tell me what someone can find a hole in the security? Thanks, Wolfrider []-=-=-=-=-=-=-=-=-=-=-=-=--=-=-=-=--=-=-=-=-=[] | E-Mail : Luc Chamberland | Date: 08/06/96 | Time: 19:23:50 | Programmeur, Electro-Conception []-=-=-=-=-=-=-=-=--=-=-=-=--=-=-=-=-=-=-=-=-=[] Il n'y a pas de jours sans bonheur.... Il n'y a que des jours ou nous sommes aveugles!