On March 18, 2012 at 6:22 AM pk <pete...@coolmail.se> wrote:
> On 2012-03-18 04:11, Bruce Hill, Jr. wrote:
>
> > Am I eternally confused?
>
> I have no idea... besides, eternity is a long time... ;-)
>
> > su - change user ID or become superuser
> >
> > It's not _only_ to become root (maybe theoretically if you only have
one
> > normal user). On a true multiuser system you can su (switch user) to
any
> > user.
>
> Yes, correct. Sorry if this was implied; I only talked about Dales
> specific problem...
>
> > Since _every_ computer I own or have _ever_ built has -pam globally,
pam is
> > not a requirement to use su ... is it?
>
> Nope. Again, I was only trying to help Dale... If su is owned by
> 'root.root' (user.group) I assumed that it's execution was controlled by
> something else since it otherwise should be owned by 'root.wheel'
> (unless you're part of the 'root' group, which I don't think is
> recommended). If you're not running pam then I assume your 'su' is owned
> by 'root.wheel'?
> Best regards
>
> Peter K
>
The ownership is not changed, with user(s) where it's necessary (never on
servers) in the wheel group.
mingdao@t420 ~ $ ls -l /bin/su
-rws--x--x 1 root root 53440 Oct 7 07:00 /bin/su
mingdao@t420 ~ $ ls -l /usr/bin/sudo
---s--x--x 2 root root 71144 Feb 22 06:34 /usr/bin/sudo
# less /etc/sudoers
<snip>
## Same thing without a password
%wheel ALL=(ALL) NOPASSWD: ALL
<snip>
mingdao@t420 ~ $ id uid=1000(mingdao) gid=1000(mingdao)
groups=1000(mingdao),7(lp),10(wheel),16(cron),18(audio),19(cdrom),27(video),80(cdrw),85(usb),100(users),250(portage)
The 'stuff' happens when you issue "visudo" and edit the above file. I've
never studied this on Gentoo, but also have:
-rwxr-xr-x 1 root root 180696 Feb 22 06:34 /usr/lib64/sudo/sudoers.so
Meh ... too much to learn for an old dog like me.
--
Happy Penguin Computers >`)
126 Fenco Drive ( \
Tupelo, MS 38801 ^^
662-269-2706; 662-491-8613
support at happypenguincomputers dot com
http://www.happypenguincomputers.com
