LinuxQuestions.org
Latest LQ Deal: Latest LQ Deals
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices


Reply
  Search this Thread
Old 01-21-2007, 12:43 PM   #1
dellthinker
Member
 
Registered: Jan 2007
Distribution: Debian
Posts: 223

Rep: Reputation: 30
Restricting su


Hi all, i just read a page about restricting su from other users by using the groupadd cmd.

Problem is that though i followed the instructions, im able to su root on another machine. The article i read is here


The commands i used was this:

Code:
debian:/home/user# groupadd rootmembers
debian:/home/user# usermod -G rootmembers user
debian:/home/user#
From what i can tell it worked because i didnt see any errors. However im still able to su on another computer. What am i doing wrong?

P.S.
debian:/etc# uname -a
Linux debian 2.4.27-3-686 #1 Thu Sep 14 06:30:39 UTC 2006 i686 GNU/Linux

Just in case anyone asked.

Last edited by dellthinker; 01-21-2007 at 12:47 PM.
 
Old 01-21-2007, 02:17 PM   #2
mikieboy
Member
 
Registered: Apr 2004
Location: Warrington, Cheshire, UK
Distribution: Linux Mint 19.1 Xfce
Posts: 555

Rep: Reputation: 33
You've created a group called rootmembers which will determine who can su to root and added yourself (user) to that group. Naturally you will be able to su to root.

If you are the system admin then you need to be able to su to root on any machine on the system. For restricting the other users you need to edit the etc/pam.d/su file as described on the page you refer to, bearing in mind that the website is aimed at Redhat users. For Debian and other distros your /etc/pam.d/su is going to look a bit different. IMO the Debian version is sufficiently well commented to be able to work out what to do from within the file itself.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off



Similar Threads
Thread Thread Starter Forum Replies Last Post
Restricting access Menestrel Linux - Newbie 1 06-07-2005 08:17 AM
Restricting IP sixth_sense Linux - Networking 1 04-27-2005 08:13 AM
Restricting su to certain users roadin SUSE / openSUSE 4 03-15-2005 12:17 PM
Restricting sites mamta_k Linux - Security 7 06-18-2004 02:33 AM
Restricting Openssh jeffpoulsen Linux - Security 1 03-03-2003 07:45 PM

LinuxQuestions.org > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 12:08 AM.

Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration