LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
Reload this Page su to disabled accounts?
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
LinkBack Search this Thread
Old 01-24-2005, 05:16 AM   #1
sat86
LQ Newbie
 
Registered: Oct 2004
Location: Scotland
Distribution: Fedora
Posts: 14

Rep: Reputation: 0
su to disabled accounts?

To get around some permissions with apache, I have created a "webauthor" account, which is the owner of files in my /var/www/html directory. The group of these files is set to "apache". A trusted set of users are set up (via sudo) to be able to su to this account (to edit the website), so that no-one has the password for it. (sudo should log the attempts). I would like to set this account to "disabled" to prevent people attempting logins on it, but this prevents users from su'ing into it. I know that /bin/nologin can be used as a shell, but would this prevent access to the account via things like X, or possibly still allow ssh to verify a correct password?

Is there a way to allow users to su to a disabled account? (Or can the password be set so that it is unusable, but the account "enabled"?)

Thanks.
Last edited by sat86; 01-24-2005 at 05:18 AM.
 
Old 01-24-2005, 06:05 AM   #2
sat86
LQ Newbie
 
Registered: Oct 2004
Location: Scotland
Distribution: Fedora
Posts: 14

Original Poster
Rep: Reputation: 0
I've just realised that this does seem to work if you don't su to a login shell, since the login shell being set to the wrong thing will result in being logged back out.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off
Trackbacks are Off
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Root and all user accounts disabled mht17 Linux - Newbie 3 05-10-2011 06:23 PM
Disabled Accounts oasisbhrnw99 Linux - General 3 09-02-2005 12:25 PM
qmail -- new accounts can't receive mail, but old accounts can b:z *BSD 1 07-13-2005 12:42 AM
Disabled accounts on the login screen! HELP!!!! Adeas Linux - Newbie 5 09-07-2003 08:19 PM
Disabled access to user accounts! HELP! Adeas Mandriva 2 09-07-2003 08:17 PM


All times are GMT -5. The time now is 04:07 PM.

Contact Us - Advertising Info - Rules - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: @linuxquestions
Open Source Consulting | Domain Registration