From owner-freebsd-current Sun Dec 15 9:36:44 2002 Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7889337B401 for ; Sun, 15 Dec 2002 09:36:42 -0800 (PST) Received: from ion.gank.org (ion.gank.org [198.78.66.164]) by mx1.FreeBSD.org (Postfix) with ESMTP id 1288F43EC5 for ; Sun, 15 Dec 2002 09:36:42 -0800 (PST) (envelope-from craig@xfoil.gank.org) Received: from darth-laptop.auir.gank.org (dsl081-113-221.dfw1.dsl.speakeasy.net [64.81.113.221]) by ion.gank.org (GankMail) with ESMTP id 7FEC22CA54 for ; Sun, 15 Dec 2002 11:33:06 -0600 (CST) Subject: su(1) problem on -current From: Craig Boston To: current@freebsd.org Content-Type: text/plain Content-Transfer-Encoding: 7bit X-Mailer: Ximian Evolution 1.0.8 Date: 15 Dec 2002 11:35:25 -0600 Message-Id: <1039973731.751.11.camel@darth-laptop> Mime-Version: 1.0 Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG On a laptop running current, I have a problem using the su program multiple times (nested). I have two accounts, I'll call them "auser" and "buser". I use auser for my everyday activities; it has no special privileges. buser is a member of the wheel group. I don't make auser a member of wheel because that grants some extra rights (such as reading select log files) that I don't want my normal account to have. The following works as expected: (log in as auser) $ id uid=1002(auser) gid=1002(auser) groups=1002(auser) $ su - su: Sorry $ (log in as buser) $ id uid=1001(buser) gid=1001(buser) groups=1001(buser), 0(wheel) $ su - Password: # Okay, that all works fine. The problem appears when I try to do what worked on STABLE, and up until about 3-4 months ago, worked on current as well. (log in as auser) $ id uid=1002(auser) gid=1002(auser) groups=1002(auser) $ su - buser Password: $ id uid=1001(buser) gid=1001(buser) groups=1001(buser), 0(wheel) $ su - su: Sorry $ So, even though I'm in the wheel group after the first su, it won't let me su to root (doesn't even prompt for password). It seems to make no difference whether I use the -l option to su or not. Is this PAM related? I'm currently using sudo as a workaround, but IMHO this looks like a bug to me. Thanks, Craig To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message