Share your knowledge at the LQ Wiki.
Go Back > Forums > Linux Forums > Linux - Security
User Name
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.


  Search this Thread
Old 01-24-2005, 06:16 AM   #1
LQ Newbie
Registered: Oct 2004
Location: Scotland
Distribution: Fedora
Posts: 14

Rep: Reputation: 0
su to disabled accounts?

To get around some permissions with apache, I have created a "webauthor" account, which is the owner of files in my /var/www/html directory. The group of these files is set to "apache". A trusted set of users are set up (via sudo) to be able to su to this account (to edit the website), so that no-one has the password for it. (sudo should log the attempts). I would like to set this account to "disabled" to prevent people attempting logins on it, but this prevents users from su'ing into it. I know that /bin/nologin can be used as a shell, but would this prevent access to the account via things like X, or possibly still allow ssh to verify a correct password?

Is there a way to allow users to su to a disabled account? (Or can the password be set so that it is unusable, but the account "enabled"?)


Last edited by sat86; 01-24-2005 at 06:18 AM.
Old 01-24-2005, 07:05 AM   #2
LQ Newbie
Registered: Oct 2004
Location: Scotland
Distribution: Fedora
Posts: 14

Original Poster
Rep: Reputation: 0
I've just realised that this does seem to work if you don't su to a login shell, since the login shell being set to the wrong thing will result in being logged back out.


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
Root and all user accounts disabled mht17 Linux - Newbie 3 05-10-2011 07:23 PM
Disabled Accounts oasisbhrnw99 Linux - General 3 09-02-2005 01:25 PM
qmail -- new accounts can't receive mail, but old accounts can b:z *BSD 1 07-13-2005 01:42 AM
Disabled accounts on the login screen! HELP!!!! Adeas Linux - Newbie 5 09-07-2003 09:19 PM
Disabled access to user accounts! HELP! Adeas Mandriva 2 09-07-2003 09:17 PM > Forums > Linux Forums > Linux - Security

All times are GMT -5. The time now is 01:45 AM.

Main Menu
Write for LQ is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration