Hi,
the behaviour you are witnessing is to be expected with the su example file
(just the auth section shown):
auth sufficient /lib/security/pam_ldap.so
auth required /lib/security/pam_unix_auth.so use_first_pass
To prevent this, you should add the rootok module, as is present in the
default configuration.
# This allows root to su without passwords (normal operation)
auth sufficient pam_rootok.so
One could argue that this line should be included in the example files,
perhaps commented out. Especially if without it scripts that are supplied by
debian (packages) break.
Gr.
Matthijs
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
