Login or Register to Ask a Question and Join Our Community


Red Hat

users cannot switch with "su" to another users

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Operating Systems Linux Red Hat users cannot switch with "su" to another users
# 1  
Old 09-28-2012
users cannot switch with "su" to another users
Hi,

i have a problem, itīs because users without belonging wheel group cannot switch to another user , when the password is introduced says not right password. The only solution for now is to add them to wheel users, but then i have another problem, they can login as root.

Is there any solution to this??

Thanks

Pablo
# 2  
Old 09-28-2012
Have you tried using sudo (controlled by /etc/sudoers)? This provides fine-grained control.

However, what happens if a user in group "foo" then su - john, and john is in the wheel group?

In general, allowing lots of people the ability to su is a big security problem.
Last edited by rbatte1; 11-28-2016 at 11:34 AM..
# 3  
Old 09-28-2012
Quote:
Originally Posted by pabloli150
The only solution for now is to add them to wheel users, but then i have another problem, they can login as root.
If everyone knows root's password, you've got bigger problems than that. Smilie
# 4  
Old 09-28-2012
ok i remove the user from wheel , and append an entry to /etc/sudoers like this


Code:
usodbms ALL=/bin/su

so it still cannot switch to another user

output is this

Code:
rhge0032:root:/root# su usodbms
$ su usosasm
Password:
su: incorrect password
$

i donīt know how to manage this

---------- Post updated at 06:57 PM ---------- Previous update was at 06:25 PM ----------

hey!!

i solved it

just commented this line in pam.d/su

Code:
# Uncomment the following line to require a user to be in the "wheel" group.
#auth           required        pam_wheel.so use_uid

Last edited by rbatte1; 11-28-2016 at 11:35 AM..
This User Gave Thanks to pabloli150 For This Post:
jim mcnamara
Login or Register to Ask a Question

Previous Thread | Next Thread

6 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Bash script - Print an ascii file using specific font "Latin Modern Mono 12" "regular" "9"

Hello. System : opensuse leap 42.3 I have a bash script that build a text file. I would like the last command doing : print_cmd -o page-left=43 -o page-right=22 -o page-top=28 -o page-bottom=43 -o font=LatinModernMono12:regular:9 some_file.txt where : print_cmd ::= some printing... (1 Reply)
Discussion started by: jcdole
1 Replies

2. Solaris

SMC "Users" error

I get the following error on an Oracle T3 trying to use SMC. I launch SMC but when I try to use the "Users" function I get the following error: The "Users" application is not able to connect to the server. Reason:VER_ERROR. Verify the server is running. I have verified and restarted the server... (0 Replies)
Discussion started by: hydrashok158
0 Replies

3. HP-UX

"Synchronize" users/groups

Hello! I'm hoping for a bit of advice on this...we have a need to synchronize users/groups between a couple servers in widely separated locations (our main DC and a disaster-recovery DC). This only has to happen, at this stage, with one server in each location, and the synchronization only has... (5 Replies)
Discussion started by: KickstartUF
5 Replies

4. Shell Programming and Scripting

awk command to replace ";" with "|" and ""|" at diferent places in line of file

Hi, I have line in input file as below: 3G_CENTRAL;INDONESIA_(M)_TELKOMSEL;SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL My expected output for line in the file must be : "1-Radon1-cMOC_deg"|"LDIndex"|"3G_CENTRAL|INDONESIA_(M)_TELKOMSEL"|LAST|"SPECIAL_WORLD_GRP_7_FA_2_TELKOMSEL" Can someone... (7 Replies)
Discussion started by: shis100
7 Replies

5. UNIX for Dummies Questions & Answers

Limit "exploring" from users/groups

I have a unix box which runs as a webserver and ftp server. I have a user account for a friend and while I trust him, I noticed that he can view directories above his own "web" folder which is his default directory. I'm still trying to understand users/groups and privileges so bear with me if... (2 Replies)
Discussion started by: creyc
2 Replies

6. UNIX for Dummies Questions & Answers

Want to create new users without using "useradd" command and user Interaction.

Don't want to use useradd command to create a new user I am doing manual addition of accounts. Actually I am writing a script and I am working on RedHat7.1 system. What I am trying to do is run the script and pass all the values of the username password and group as command line parameters. Now... (2 Replies)
Discussion started by: syedifti
2 Replies
Login or Register to Ask a Question