Date: Sun, 5 Apr 1998 14:10:53 -0400 From: "Ross McFarland" <rwmcfa1@pop.uky.edu> To: <freebsd-questions@FreeBSD.ORG> Subject: the su command and specifing who can telnet Message-ID: <000d01bd60be$2d7a89a0$896969ce@win95-133>
next in thread | raw e-mail | index | archive | help
[-- Attachment #1 --] I have two hopefully quick questions. 1) I've found and understand how the ftp access is controlled by a file, where and\or how can I control who can access the server by Telnet? I have a user name for apache to run under and would like to restrict its ability to log in from any where other than the console. 2) how do I allow a user to su to root. I've tried setting group to 0(wheel) and using the log in class root, staff and everything else I can think of in every combination. when I try it always says FreeBSD 20: su something about kerberos (how ever it's spelled) passwd not found and not being in root's ACL something about not being in the correct group to su to root FreeBSD 21: this message is always given to me no matter how I've tried to set group id and login class, I assume that ACL is Access Control List but have no idea where it is or how to set it up. I've looked numerous times through the man, doc, and FAQ, along with other UNIX documents and up to this point I've come up empty. any help you all could give would be greatly appreciated thanks in advance, Ross McFarland rwmcfa1@pop.uky.edu http://sac.uky.edu/~rwmcfa1/ [-- Attachment #2 --] <!DOCTYPE HTML PUBLIC "-//W3C//DTD W3 HTML//EN"> <HTML> <HEAD> <META content=text/html;charset=iso-8859-1 http-equiv=Content-Type> <META content='"MSHTML 4.72.2106.6"' name=GENERATOR> </HEAD> <BODY bgColor=#ffffff> <DIV><FONT color=#000000 size=2>I have two hopefully quick questions.</FONT></DIV> <DIV><FONT color=#000000 size=2></FONT> </DIV> <DIV><FONT color=#000000 size=2>1) I've found and understand how the ftp access is controlled by a file, where and\or how can I control who can access the server by Telnet? I have a user name for apache to run under and would like to restrict its ability to log in from any where other than the console.</FONT></DIV> <DIV><FONT color=#000000 size=2></FONT> </DIV> <DIV><FONT color=#000000 size=2>2) how do I allow a user to su to root. I've tried setting group to 0(wheel) and using the log in class root, staff and everything else I can think of in every combination. when I try it always says</FONT></DIV> <DIV><FONT color=#000000 size=2></FONT> </DIV> <DIV><FONT color=#000000 size=2><FONT size=2>FreeBSD 20:</FONT> su</FONT></DIV> <DIV><FONT color=#000000 size=2>something about kerberos (how ever it's spelled) passwd not found and not being in root's ACL</FONT></DIV> <DIV><FONT color=#000000 size=2>something about not being in the correct group to su to root</FONT></DIV> <DIV><FONT size=2>FreeBSD 21:</FONT></DIV> <DIV><FONT color=#000000 size=2></FONT> </DIV> <DIV><FONT color=#000000 size=2>this message is always given to me no matter how I've tried to set group id and login class, I assume that ACL is Access Control List but have no idea where it is or how to set it up.</FONT></DIV> <DIV><FONT color=#000000 size=2></FONT> </DIV> <DIV><FONT color=#000000 size=2><FONT color=#000000>I've </FONT>looked numerous times through the man, doc, and FAQ, along with other UNIX documents and up to this point I've come up empty. </FONT></DIV> <DIV><FONT color=#000000 size=2></FONT> </DIV> <DIV><FONT color=#000000 size=2>any help you all could give would be greatly appreciated </FONT></DIV> <DIV><FONT color=#000000 size=2></FONT><FONT color=#000000 size=2>thanks in advance,</FONT></DIV> <DIV><FONT color=#000000 size=2></FONT> </DIV> <DIV><FONT color=#000000 size=2>Ross McFarland<BR><A href="mailto:rwmcfa1@pop.uky.edu">rwmcfa1@pop.uky.edu</A><BR><A href="http://sac.uky.edu/~rwmcfa1/">http://sac.uky.edu/~rwmcfa1/</A></FONT></DIV>; <DIV><FONT color=#000000 size=2></FONT> </DIV></BODY></HTML>
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?000d01bd60be$2d7a89a0$896969ce>