LinuxQuestions.org
Page 2 of 2 1 2
Show 50 post(s) from this thread on one page

LinuxQuestions.org (/questions/)
-   Slackware (https://www.linuxquestions.org/questions/slackware-14/)
-   -   slackware hardening tips -Su: authentication failure (https://www.linuxquestions.org/questions/slackware-14/slackware-hardening-tips-su-authentication-failure-4175471021/)

san2ban 08-03-2013 11:40 AM
Code:
bash-4.2$ cat /etc/suauth
# Format "to-id: from-ID: ACTION"
# A couple of privileged users may su to root
# with their own password
# root:username1,username2:OWNPASS
# Anyone else may not su to root unless
# they are a member of the "wheel" group
root:ALL EXCEPT GROUP wheel DENY
Modified as per su hardening tips, link in my first post

e5150 08-03-2013 12:09 PM
Quote:
Originally Posted by san2ban (Post 5002265)
Code:
root:ALL EXCEPT GROUP wheel DENY
There is supposed to be a colon (and no spaces) between "wheel" and "DENY".

wadsworth 08-03-2013 12:11 PM
Maybe needs a colon between "wheel" and "DENY"
Code:
root:ALL EXCEPT GROUP wheel:DENY

phoemur 08-03-2013 03:24 PM
I had the same problem, and it's not in the /etc/suauth...
In fact i removed the file and had the same error:

Quote:
su
Password:
su: Authentication failure
The problem ocurred when you changed the permissions of /bin/su, which i solved with:
Quote:
chmod u+s /bin/su
And now everything works again...

But don't forget the colon they said, you need it...

phoemur 08-03-2013 03:31 PM
This happened because when you chown the /bin/su to group wheel it looses the The Set User ID and Set Group ID permissions...
it should be rws instead of just rwx

san2ban 08-04-2013 02:08 AM
Genlemen
Thanks to e5150 for pointing out the missing semicolon. Problem is solved.
I blindly copied and pasted from the link for su hardening tips. This semicolon should be put there also


Thanks to everybody. This is what makes us slackers


All times are GMT -5. The time now is 10:37 AM.
Page 2 of 2 1 2
Show 50 post(s) from this thread on one page