Linux 2.6 - man page for pam_rootok (linux section 8)
|Linux & Unix Commands - Search Man Pages
PAM_ROOTOK(8) Linux-PAM Manual PAM_ROOTOK(8)
pam_rootok - Gain only root access
pam_rootok is a PAM module that authenticates the user if their UID is 0. Applications
that are created setuid-root generally retain the UID of the user but run with the
authority of an enhanced effective-UID. It is the real UID that is checked.
Print debug information.
MODULE TYPES PROVIDED
The auth, acct and password module types are provided.
The UID is 0.
The UID is not 0.
In the case of the su(1) application the historical usage is to permit the superuser to
adopt the identity of a lesser user without the use of a password. To obtain this behavior
with PAM the following pair of lines are needed for the corresponding entry in the
/etc/pam.d/su configuration file:
# su authentication. Root is granted access by default.
auth sufficient pam_rootok.so
auth required pam_unix.so
su(1), pam.conf(5), pam.d(5), pam(7)
pam_rootok was written by Andrew G. Morgan, <firstname.lastname@example.org>.
Linux-PAM Manual 06/04/2011 PAM_ROOTOK(8)
All times are GMT -4. The time now is 12:43 PM.