Limiting sudo su -?
I have sudo set up on my systems.
Unfortunately when I have consultants working on the systems they don't use sudo, rather the first thing they do is sudo su - to root!
Is there a way to limit this command to specific accounts?
Why do external consultants (is that correct?) have your root passwords? change the root password, setup sudo for their accounts.
If you dont want to for somereason you could change the owners(group and probably owner) of su and put all those who need to su into that group, then allow owner/group to execute but not the rest of the world.
Just some suggestions
They are external consultants, yes.
They need root access to the systems occassionally, for when a mail application (these are mail servers running RHEL 3 update 5) fails or requires maintenance to fix a bug or anomoly.
|All times are GMT -5. The time now is 07:00 AM.|