[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

RE: pam_wheel



 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> -----Original Message-----
> From: pam-list-admin@redhat.com
> [mailto:pam-list-admin@redhat.com]On Behalf Of
> SBNelson@thermeon.com
> Sent: Friday, March 29, 2002 9:15 AM
> To: pam-list@redhat.com
> Subject: RE: pam_wheel
> 
> 
> I thought that pam_wheel limits you (you may now execute this 
> program only
> if you are a member of wheel)-- not reducing restrictions.
> 

pam_wheel is a level of restriction, but it's certainly not as
restrictive as "you must know the root password".

The original poster was talking about authenticating based on
pam_wheel _instead_ of pam_unix so that if you're in the wheel group
you have full su access without needing the root password.  As people
have pointed out sudo delivers this functionality alot more securely
than su does.

- -- 
Kevan Shea

"Industrious people create industry. 
Lazy people create civilization."
- --Hideo Nakamura   

-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>

iQA/AwUBPKSBs1bFA6QvIWPLEQLsNQCg+KDC0m0YzbhzA61IJTa0Afjv9jUAoIhy
/HM7DYxUvmnHZWSGwAhS4mxR
=qfuK
-----END PGP SIGNATURE-----





[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index] []