Sudo & su
mark
m.roth2006 at rcn.com
Mon Nov 5 01:44:08 UTC 2007
Chris St. Pierre wrote:
> On Sun, 4 Nov 2007, Vivek J. Patankar wrote:
>
>> From the replies I got, I see that sudo is not the way to do it if I
>> don't have the choice to be as restrictive as I want to be.
>> Is there a way to force "su" to ask for the root password regardless
>> of the manner in which the command is invoked?
>
> Sure -- edit the source and recompile.
Actually, in /etc/sudoers
Defaults targetpw
which will force the user to use the password of the target user (i.e., root).
It comes that way by default in SuSE; I had to undo it, because I think that's
a bad idea for everyone to have root password.
mark
mark
>
> Of course, that doesn't solve _any_ of the problems listed earlier.
> Someone can still use screen, less, vi, etc., to get a root shell
> without su.
>
> Chris St. Pierre
> Unix Systems Administrator
> Nebraska Wesleyan University
>
More information about the redhat-list
mailing list