[SOLVED] Deny specific users to use the su command
Red HatThis forum is for the discussion of Red Hat Linux.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Take them out of the wheel group maybe? I know that, on BSD, users must be a member of wheel to use su (only because I've been familiarizing myself with FreeBSD--you must actively add your user to wheel in FreeBSD).
ok.. that is fine. but whenever users type su commd in there shell its promting to type password.
and i wnat them not to execute the su command
except user_1.
one more thing wanted to ask is that default redhat? (every users can execute su cmd)
yes, the su command is meant to be usable by any user, since it asks for the TARGET users password, not the current users password. So it's completely useless command unless you know the password of the user you are attempting to su to. Unlike sudo, this doesn't allow users any more rights than if they have access to the system in the first place, since they have to know the password of the user they want to become in order to use it.
Last edited by Timothy Miller; 08-28-2016 at 04:39 PM.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.