I thought that pam_wheel limits you (you may now execute this program only if you are a member of wheel)-- not reducing restrictions. > -----Original Message----- > From: Petro [SMTP:petro@auctionwatch.com] > Sent: Thursday, March 28, 2002 4:35 PM > To: pam-list@redhat.com > Subject: Re: pam_wheel > > On Thu, Mar 28, 2002 at 11:01:23AM -0800, James Bagley Jr wrote: > > Hey all, > > > > I have users that need root access to their workstations. Reading the > pam > > documentation for the pam_wheel module it sounds like I can allow them > to > > 'su -' without entering a password. This is ideal because I don't want > to > > give them that root password, i'd rather keep that to myself. Problem > is, > > it doesn't work. I'm using red hat 7.2. Here is the contents of > > /etc/pam.d/su: > > Sudo is a much better tool for this. > > However, if they have root access (which su - is), they can simply > change the root password. > > Sudo, properly configured can help to solve that problem. > > -- > Share and Enjoy. > > > > _______________________________________________ > > Pam-list@redhat.com > https://listman.redhat.com/mailman/listinfo/pam-list
