Hi. I installed openldap, pam_ldap and nss_ldap, so all users's accounts and passwords are stored in oppenldap directory. But when I want do su I get:
dgap-gw root # su - borisych Password: I don't know borisych's password But sudo works nice: dgap-gw root # sudo -u borisych /bin/bash bash: /root/.bashrc: Permission denied dgap-gw root $ dgap-gw root # cat /etc/pam.d/su #%PAM-1.0 auth sufficient /lib/security/pam_ldap.so auth required /lib/security/pam_unix_auth.so use_first_pass account sufficient /lib/security/pam_ldap.so account required /lib/security/pam_unix_acct.so password required /lib/security/pam_cracklib.so password sufficient /lib/security/pam_ldap.so password required /lib/security/pam_pwdb.so use_first_pass session required /lib/security/pam_unix_session.so dgap-gw root # cat /etc/pam.d/sudo auth required pam_pwdb.so shadow nullok dgap-gw root # -- [EMAIL PROTECTED] mailing list
