From owner-cvs-usrbin Tue Feb 25 15:02:55 1997 Return-Path: Received: (from root@localhost) by freefall.freebsd.org (8.8.5/8.8.5) id PAA22376 for cvs-usrbin-outgoing; Tue, 25 Feb 1997 15:02:55 -0800 (PST) Received: from po1.glue.umd.edu (root@po1.glue.umd.edu [129.2.128.44]) by freefall.freebsd.org (8.8.5/8.8.5) with ESMTP id PAA22308; Tue, 25 Feb 1997 15:00:55 -0800 (PST) Received: from modem.eng.umd.edu (modem.eng.umd.edu [129.2.98.187]) by po1.glue.umd.edu (8.8.5/8.8.5) with ESMTP id SAA24943; Tue, 25 Feb 1997 18:00:50 -0500 (EST) Received: from localhost (chuckr@localhost) by modem.eng.umd.edu (8.8.5/8.7.3) with SMTP id SAA04079; Tue, 25 Feb 1997 18:00:47 -0500 (EST) X-Authentication-Warning: modem.eng.umd.edu: chuckr owned process doing -bs Date: Tue, 25 Feb 1997 18:00:47 -0500 (EST) From: Chuck Robey X-Sender: chuckr@modem.eng.umd.edu To: Poul-Henning Kamp cc: Guido van Rooij , "Daniel O'Callaghan" , ache@nagual.ru, guido@freefall.freebsd.org, CVS-committers@freefall.freebsd.org, cvs-all@freefall.freebsd.org, cvs-usrbin@freefall.freebsd.org Subject: Re: cvs commit: src/usr.bin/su su.1 su.c In-Reply-To: <7423.856911449@critter.dk.tfs.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-cvs-usrbin@FreeBSD.ORG X-Loop: FreeBSD.org Precedence: bulk On Tue, 25 Feb 1997, Poul-Henning Kamp wrote: > In message , Chuck > Robey writes: > >On Tue, 25 Feb 1997, Guido van Rooij wrote: > > > >> > > >> > What about an explicit entry for 'everyone'? > >> > e.g. wheel:*:0:* > >> > > >> > I'd much rather have people actively decide to allow su access than > >> > passively allow it. > >> > >> > >> There are no wldcards allowed in the forup member field. > > > >Guido, I'm curious. Are there really (that you know of) shops that want > >to be so free with root privs that they don't even need to know who has > >them? If there is, then I guess you're justified, but I wouldn't have > >thought such existed. > > It doesn't give them root-privs, it allows them to run su(1)... Isn't that virtually the same thing? Oh, you mean giving them su and NOT giving them the root password ... on all systems I've worked on, you only used su to gain root privs anyways. I guess thast was my question, if such a user group existed. If you're saying it does, them I guess I'm satisfied. ----------------------------+----------------------------------------------- Chuck Robey | Interests include any kind of voice or data chuckr@eng.umd.edu | communications topic, C programming, and Unix. 9120 Edmonston Ct #302 | Greenbelt, MD 20770 | I run Journey2 and picnic, both FreeBSD (301) 220-2114 | version 3.0 current -- and great FUN! ----------------------------+-----------------------------------------------