Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: users cannot switch with "su" to another users
Operating Systems Linux Red Hat users cannot switch with "su" to another users Post 302707419 by jim mcnamara on Friday 28th of September 2012 02:09:20 PM
Old 09-28-2012
Have you tried using sudo (controlled by /etc/sudoers)? This provides fine-grained control.

However, what happens if a user in group "foo" then su - john, and john is in the wheel group?

In general, allowing lots of people the ability to su is a big security problem.
Last edited by rbatte1; 11-28-2016 at 11:34 AM..
 

6 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

Want to create new users without using "useradd" command and user Interaction.

Don't want to use useradd command to create a new user I am doing manual addition of accounts. Actually I am writing a script and I am working on RedHat7.1 system. What I am trying to do is run the script and pass all the values of the username password and group as command line parameters. Now... (2 Replies)
Discussion started by: syedifti
2 Replies

2. UNIX for Dummies Questions & Answers

Limit "exploring" from users/groups

I have a unix box which runs as a webserver and ftp server. I have a user account for a friend and while I trust him, I noticed that he can view directories above his own "web" folder which is his default directory. I'm still trying to understand users/groups and privileges so bear with me if... (2 Replies)
Discussion started by: creyc
2 Replies

3. Shell Programming and Scripting

awk command to replace ";" with "|" and ""|" at diferent places in line of file

Hi, I have line in input file as below: 3G_CENTRAL;INDONESIA_(M)_TELKOMSEL;SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL My expected output for line in the file must be : "1-Radon1-cMOC_deg"|"LDIndex"|"3G_CENTRAL|INDONESIA_(M)_TELKOMSEL"|LAST|"SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL" Can someone... (7 Replies)
Discussion started by: shis100
7 Replies

4. HP-UX

"Synchronize" users/groups

Hello! I'm hoping for a bit of advice on this...we have a need to synchronize users/groups between a couple servers in widely separated locations (our main DC and a disaster-recovery DC). This only has to happen, at this stage, with one server in each location, and the synchronization only has... (5 Replies)
Discussion started by: KickstartUF
5 Replies

5. Solaris

SMC "Users" error

I get the following error on an Oracle T3 trying to use SMC. I launch SMC but when I try to use the "Users" function I get the following error: The "Users" application is not able to connect to the server. Reason:VER_ERROR. Verify the server is running. I have verified and restarted the server... (0 Replies)
Discussion started by: hydrashok158
0 Replies

6. Shell Programming and Scripting

Bash script - Print an ascii file using specific font "Latin Modern Mono 12" "regular" "9"

Hello. System : opensuse leap 42.3 I have a bash script that build a text file. I would like the last command doing : print_cmd -o page-left=43 -o page-right=22 -o page-top=28 -o page-bottom=43 -o font=LatinModernMono12:regular:9 some_file.txt where : print_cmd ::= some printing... (1 Reply)
Discussion started by: jcdole
1 Replies

LEARN ABOUT OSF1

removeuser

removeuser(8)						      System Manager's Manual						     removeuser(8)

NAME

       removeuser - Deletes user accounts interactively

SYNOPSIS

       /usr/sbin/removeuser

DESCRIPTION

								      Security Note

       If  you have enhanced security installed on your system, you should use the dxaccounts command to remove users. See the Security manual and
       the dxaccounts(8) reference page for more information.

       The removeuser command is an interactive command for deleting user accounts from your system.  It also gives the  option  of  deleting  the
       user's  home  directory, files and mail.  The command prompts you for specific information and informs you of its activity and error condi-
       tions.

       The removeuser command invokes /usr/sbin/userdel to delete the user account information from /etc/passwd and the hashed	password  database
       (if present).

       Only the superuser can execute this command.

       The  command performs the following tasks: Asks for a login name for the user to be deleted.  Enter the login name.  If this entry does not
       exist in the /etc/passwd file, the command informs you of this and exits.  If the entry does exist, the command	continues.   Displays  the
       entry for the user from the /etc/passwd file and asks if this is the entry you want to delete.  If the answer to this query is no, the com-
       mand indicates that the user was not deleted and then exits.  If the answer to this query is yes, the command deletes the user's entry from
       the /etc/passwd file and any occurrences of the user from the /etc/group file.  It then states that the user was deleted.  Searches several
       administrative directories and files for occurrences of the user and informs you if they exist.	If so, it suggests that you  may  want	to
       delete these occurrences when the command is finished.  If no occurrences of the user are found in these directories and files, the command
       indicates so.  Asks if you want to delete the home directory, all subdirectories, and all mail files for the user.  If the answer  to  this
       query  is no, the command indicates that the user's home directory was not deleted and then exits.  If the answer to this query is yes, the
       command continues.

	      As a precaution, the command reminds you that you should have backed up the files for the user before removing them if  you  do  not
	      want  to	lose  them.  It then asks if you are sure that you want to delete the files for this user.  If the answer to this query is
	      no, the command indicates that the user's home directory was not deleted and then exits.	If the answer to this query  is  yes,  the
	      command states that it is removing the user's home directory, its contents and the user's mail file.  It then deletes these items.

       At this point, the command ends.

NOTES

       Users  are advised to migrate to the /usr/sbin/userdel utility or the dxaccounts utility as this command may be removed in a future version
       of the operating system.

EXAMPLES

       Enter a login name to be removed or <Return> to exit:  john This is the entry for (john) in the /etc/passwd file:

       john:VSh6/xbMqPDcY:5006:15:sdf:/usr/users/john:

       Is this the entry you want to delete (y/n)?  y Working ...  Entry for (john) removed.  Searching relevant directories and files for  (john)
       ...   None  found.  Do you want to remove the home directory, all subdirectories, files, and mail for (john) (y/n)?  y The files for (john)
       will  be  lost  if  not	backed	up.   Are  you	sure  you  want  to  remove  these  files  (y/n)?   y  Deleting  /usr/users/john  Deleting
       /usr/spool/mail/john

FILES

       Specifies the command path Group file Password file

SEE ALSO

       Commands:  addgroup(8), adduser(8), dxaccounts(8), finger(1), mkpasswd(8), passwd(1), useradd(8), userdel(8), vipw(8)

       Files:  group(4), passwd(4)

																     removeuser(8)
All times are GMT -4. The time now is 06:33 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy