LinuxQuestions.org
LinuxAnswers - the LQ Linux tutorial section.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 06-03-2004, 11:55 AM   #1
jrbush82
Member
 
Registered: Mar 2002
Location: Hampton, VA
Posts: 86

Rep: Reputation: 15
Force user to be in a group to use su?


The title pretty much says it all. I'm running slackware v9.1, and I want to limit users who can actually use the su command. It is like this by default with Gentoo, and figured it would be a good thing to implement since I will have multiple users on the system. Add them to an administrators group in order for them to have access to su. How would I go about doing this?

Thanks
 
Old 06-03-2004, 12:04 PM   #2
ranger_nemo
Senior Member
 
Registered: Feb 2003
Location: N'rn WI -- USA
Distribution: Kubuntu 8.04, ClarkConnect 4
Posts: 1,142

Rep: Reputation: 47
Make a new group called "su".

Set the owership of su to "root.su".

Change the permissions of su to u=rx, g=rx, a=n .

Add any users you want to be able to su to the su group.

Should work... I think.
 
Old 06-03-2004, 09:48 PM   #3
btmiller
Senior Member
 
Registered: May 2004
Location: In the DC 'burbs
Distribution: Arch, Scientific Linux, Debian, Ubuntu
Posts: 4,128

Rep: Reputation: 319Reputation: 319Reputation: 319Reputation: 319
Two points: first, remember to keep the setuid bit on the su binary, otherwise it won't work. Secondly you can use the pam_wheel.so pluggable authentication module to accomplish this (by default, it disallows su to all but members of the wheel group). Ranger_nemo's idea also works, though, provided you remember my caveat about keeping su setuid root.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
How to list user in Linux box, add an user to a group! steady_lfcfan Linux - Newbie 12 01-27-2013 01:14 PM
User and Group Admin: How to tell Who is in What group? Akhran Linux - Newbie 1 11-12-2005 11:16 PM
I want to force user logouts qowpal Linux - Newbie 10 09-23-2004 02:52 PM
Force user login with different account rte Linux - Newbie 1 04-01-2004 09:09 AM
Force user ust Linux - General 1 10-09-2003 11:03 AM


All times are GMT -5. The time now is 11:43 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration