Sudo & su

[mark]

Chris St. Pierre wrote:
> On Sun, 4 Nov 2007, Vivek J. Patankar wrote:
> 
>> From the replies I got, I see that sudo is not the way to do it if I 
>> don't have the choice to be as restrictive as I want to be.
>> Is there a way to force "su" to ask for the root password regardless 
>> of the manner in which the command is invoked?
> 
> Sure -- edit the source and recompile.

Actually, in /etc/sudoers
Defaults targetpw
which will force the user to use the password of the target user (i.e., root).

It comes that way by default in SuSE; I had to undo it, because I think that's 
a bad idea for everyone to have root password.

	mark
	mark
> 
> Of course, that doesn't solve _any_ of the problems listed earlier.
> Someone can still use screen, less, vi, etc., to get a root shell
> without su.
> 
> Chris St. Pierre
> Unix Systems Administrator
> Nebraska Wesleyan University
>