From owner-freebsd-current@FreeBSD.ORG Thu Oct 21 15:34:14 2004 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 42B8616A4CE for ; Thu, 21 Oct 2004 15:34:14 +0000 (GMT) Received: from box7954.elkhouse.de (box7954.elkhouse.de [213.9.79.54]) by mx1.FreeBSD.org (Postfix) with ESMTP id 9863043D39 for ; Thu, 21 Oct 2004 15:34:13 +0000 (GMT) (envelope-from roman@ontographics.com) Received: from [192.168.1.3] (1Cust147.vr1.dtm1.alter.net [149.229.96.147]) (authenticated bits=0) by box7954.elkhouse.de (8.13.1/8.12.9) with ESMTP id i9LFaPtW087918 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT) for ; Thu, 21 Oct 2004 17:36:26 +0200 (CEST) (envelope-from roman@ontographics.com) From: Roman Kennke To: freebsd-current@FreeBSD.org Content-Type: text/plain Message-Id: <1098372850.2123.28.camel@moonlight> Mime-Version: 1.0 X-Mailer: Ximian Evolution 1.4.6 Date: Thu, 21 Oct 2004 17:34:10 +0200 Content-Transfer-Encoding: 7bit Subject: PAM and SU? X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 21 Oct 2004 15:34:14 -0000 Hi list, I need some help. I have upgraded from 5.2.1 to 5.3-RC1 and now su lets me into root without a password, I really don't like this. I think that the problem lies in the configuration file /etc/pam.d/su . This is what /var/log/messages has to say: Oct 21 16:47:43 box7954 su: in openpam_read_policy_file(): /etc/pam.d/su: invalid control flag on line 11: 'include' it seems that it doesn't understand the include flag properly. I googled a little bit and in no manual I found the include flag mentioned. So what is going on here? /Roman