Chris St. Pierre wrote:
On Sun, 4 Nov 2007, Vivek J. Patankar wrote:
From the replies I got, I see that sudo is not the way to do it if I
don't have the choice to be as restrictive as I want to be.
Is there a way to force "su" to ask for the root password regardless
of the manner in which the command is invoked?
Sure -- edit the source and recompile.
Actually, in /etc/sudoers
Defaults targetpw
which will force the user to use the password of the target user (i.e., root).
It comes that way by default in SuSE; I had to undo it, because I think that's
a bad idea for everyone to have root password.
mark
mark
Of course, that doesn't solve _any_ of the problems listed earlier.
Someone can still use screen, less, vi, etc., to get a root shell
without su.
Chris St. Pierre
Unix Systems Administrator
Nebraska Wesleyan University
--
redhat-list mailing list
unsubscribe mailto:redhat-list-request@xxxxxxxxxx?subject=unsubscribe
https://www.redhat.com/mailman/listinfo/redhat-list
