LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 01-26-2005, 03:18 AM   #1
Smokey
Member
 
Registered: Jul 2004
Distribution: Slackware
Posts: 311

Rep: Reputation: 30
disable su-wheel group


Hi, I am reading a book and it says I can add users to a wheel group where they cannot 'su'? What do I have to specify when I add this group?
 
Old 01-26-2005, 04:47 AM   #2
|2ainman
Member
 
Registered: Mar 2004
Distribution: Slackware current, DSL 0.9.2
Posts: 133

Rep: Reputation: 15
The wheel group isnt so that they "cant" su ... its so that they dont have to. The sudoers file specifies that a user in group wheel can do everything that root can do
Code:
# Uncomment to allow people in group wheel to run all commands
# %wheel        ALL=(ALL)       ALL

# Same thing without a password
# %wheel        ALL=(ALL)       NOPASSWD: ALL
thats from the sudoers file. You can edit that w/ visudo if you want to enable the group wheel to be able to do everything. If you're running slackware, the group wheel is already created. When you create an account through the adduser script, it will ask you for additional groups for the account to be part of ... you could specify wheel there. If you want to make a user part of group wheel ... do a man on usermod.
HTH
 
Old 01-26-2005, 05:10 AM   #3
Smokey
Member
 
Registered: Jul 2004
Distribution: Slackware
Posts: 311

Original Poster
Rep: Reputation: 30
Hmmm, so what do I have to do to disable 'su' for users in a certain group?
 
Old 01-29-2005, 04:02 AM   #4
zsoltrenyi
Member
 
Registered: May 2004
Distribution: redhat, trustix, debian
Posts: 103

Rep: Reputation: 15
you can give permission to su only for users members of group wheel by putting something like this in /etc/pam.d/su: Auth required /lib/security/pam_wheel.so group=wheel
then you make users who you want to be able to su member of wheel
do a search in google for examples
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
adding user to wheel group tied2 *BSD 10 09-28-2007 04:22 AM
how do i add myself to the wheel group matneyc Linux - Software 4 01-09-2005 11:00 PM
OpenBSD 3.6 Wheel group Hcman *BSD 2 11-19-2004 01:47 AM
limiting su root with wheel group? kj6loh Linux - General 17 09-02-2004 08:45 AM
Wheel group only half working ??? Mike25 Linux - Newbie 0 02-21-2003 11:03 PM


All times are GMT -5. The time now is 05:31 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration