On Mon, 15 Jan 2001, RaghuNath L wrote:
> Hi Ajay/Suresh,
>
> it required a reboot for that to come to effect kill -HUP didn't work.
> but now only the user whos current group is wheel can do su but for other's it
> say's password incorrcet how to make statement like " contact sysadmin" for non
> wheel group user's.
No reboot is required on my box. Tested it just now. I uncommented
the firest line in /etc/pam.d/su and added my login in the wheel group and
I could su without password. PAM is not a service. So what are you trying
to kill -HUP?
If you want that members of wheel group can su without password,
use the "sufficient" clause(?).
If you want that only the members of wheel group can su and they
also require password auth , choose the "required" and comment the
"sufficient".
Now , if you want to change the response of su when auth fails, I
think you will have to hack the su program.
Bye and Enjoy Life...
> > -------
> > #%PAM-1.0
> > auth sufficient /lib/security/pam_rootok.so
> > # Uncomment the following line to implicitly trust users in the "wheel" group.
> > #auth sufficient /lib/security/pam_wheel.so trust use_uid
> > # Uncomment the following line to require a user to be in the "wheel" group.
> > #auth required /lib/security/pam_wheel.so use_uid
> > --------
--
#!!! If anything can go wrong, _FIX_ it. (To hell with MURPHY)
Ajay kumar Dwivedi
[EMAIL PROTECTED]
----------------------------------------------
An alpha version of a web based tool to manage
your subscription with this mailing list is at
http://lists.linux-india.org/cgi-bin/mj_wwwusr
