From owner-freebsd-questions Mon Sep 11 7:22:43 2000 Delivered-To: freebsd-questions@freebsd.org Received: from tigerdyr.candid.dk (tigerdyr.candid.dk [193.162.142.120]) by hub.freebsd.org (Postfix) with ESMTP id BA44637B422 for ; Mon, 11 Sep 2000 07:22:40 -0700 (PDT) Received: by tigerdyr.candid.dk (Postfix, from userid 1001) id EEAEA98B4; Mon, 11 Sep 2000 16:22:39 +0200 (CEST) Date: Mon, 11 Sep 2000 16:22:39 +0200 From: =?iso-8859-1?Q?Michael_Lyngb=F8l?= To: Daniel Frazier Cc: freebsd-questions@FreeBSD.ORG Subject: Re: restricted su Message-ID: <20000911162239.A37626@tigerdyr.candid.dk> References: <20000911134613.B34974@tigerdyr.candid.dk> <39BCE5E6.365473C4@magpage.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline User-Agent: Mutt/1.2.5i In-Reply-To: <39BCE5E6.365473C4@magpage.com>; from dfrazier@magpage.com on Mon, Sep 11, 2000 at 10:02:14AM -0400 X-Operating-System: FreeBSD/i386 4.1-STABLE Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Mon, Sep 11, 2000 at 10:02:14AM -0400, Daniel Frazier wrote: > > Is it possible to restrict 'su' to a specfic user to a specfic group? > > > > (just like only users in group 'wheel' may su to root) > > > > Thanks > > /Michael > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-questions" in the body of the message > > Michael, > To answer your question... if you have a user in a group that you wish > to let su to root, you can just add that users name to the wheel group > in /etc/group. User will be in both groups... No, that's not what I want (I'm allready aware of the use of group 'wheel' for root access) Let's say that I've got this user 'gnyf' and a group 'lusers'. I want only members og group 'gnyf' to be allowed to su to user 'gnyf'. Looking at /usr/src/usr.bin/su/su.c (as pointed out by Igor) - you'll have to hack this up ypur selv?!? - Michael To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message