Quote:
Originally Posted by jschiwal
The reason for the wheel group is so that you can allow only wheel group members to use sudo & not have to give them the root password. <snip>
To use su, a person needs to know the root password. <snip>
|
Actually, no. pam_wheel can be used to restrict users from being able to use su, including with the root password. This is a long-standing BSD mechanism. It still requires that users be both in the wheel group and to have the root password.
It is not typically used in "Linux" systems whereas sudo, like you mentioned, is more common.
The usage of pam_wheel.so is as described in the OP. See the OP and "man pam_wheel".
- Arch