On Mon, Sep 03, 2001 at 08:27:57PM +0800, Federico Sevilla III wrote:
> I don't think you can restrict access to su, since if the person knows the
> target user's password he can use su. Or if he's root without having to
> know the password.
>
This is not entirely true. Try to install the BSD version of 'su',
not the GNU version which most distros install by default. The BSD
version has the notion of a 'wheel' group; only people who are members
of the 'wheel' group can use the 'su' command.
There's a far easier way I think, chmod 'su' to 4750, and let it be
owned by user 'root' and group 'wheel'.
--
Rafael R. Sevilla <[EMAIL PROTECTED]> +63(2) 8177746 ext. 8311
Programmer, InterdotNet Philippines +63(917) 4458925
http://dido.engr.internet.org.ph/ OpenPGP Key ID: 0x5CDA17D8
_
Philippine Linux Users Group. Web site and archives at http://plug.linux.org.ph
To leave: send "unsubscribe" in the body to [EMAIL PROTECTED]
To subscribe to the Linux Newbies' List: send "subscribe" in the body to
[EMAIL PROTECTED]
