Login or Register to Ask a Question and Join Our Community


UNIX for Advanced & Expert Users

Where to find accounts with su access?

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Top Forums UNIX for Advanced & Expert Users Where to find accounts with su access?
# 1  
Old 04-01-2013
Where to find accounts with su access?
Hi,

This is for some system audit - there are sulog files that recorded all su activities, we need to verify that all the user accounts in the log are supposed to have su capability. Is there some configuration file where all the user accounts with su access are listed? (similar to /etc/sudoers file for all accounts that could do sudo)

thanks,

Jay
# 2  
Old 04-01-2013
By default (depending on OS), all users are allowed to run the su command as long as they know the password for the account they are attempting to su too. Failures are usually logged to the system logger.

You can restrict su usage by uncommenting the following line in /etc/pam.d/su and adding designated users to the wheel group:

Code:
# Uncomment the following line to require a user to be in the "wheel" group.
#auth           required        pam_wheel.so use_uid

This User Gave Thanks to in2nix4life For This Post:
seafan
# 3  
Old 04-01-2013
To clarify that a bit, generally, even when wheel is enforced, not being a member of wheel does not prevent a user from using su. It merely prevents them from becoming root. They can still become another, non-privileged user.

Regards,
Alister
This User Gave Thanks to alister For This Post:
seafan
# 4  
Old 04-01-2013
Thanks for your replies, much appreciated!
Login or Register to Ask a Question

Previous Thread | Next Thread

9 More Discussions You Might Find Interesting

1. UNIX for Beginners Questions & Answers

Find command with Ignore Access issues

Hi, I am using following command to find a specific file. find . -name "find*.txt" -type f -print I am issuing that command at root directory since I don't know in which sub folder that file is getting created from some other process. As I am not having access to all directories, my... (3 Replies)
Discussion started by: RameshCh
3 Replies

2. Shell Programming and Scripting

Find: cannot access <file name>

Hi, I am getting below error in the log file: << 01/05/13 23:30:02 Script Start find: cannot access tu File name : 01/05/13 23:30:03 no input file found 01/05/13 23:30:03 Script End >> Below is the part of shell script which runs once in a week.It tries... (3 Replies)
Discussion started by: Ank13
3 Replies

3. Red Hat

How to check local accounts have root and user access rights ?

Hi, I have three servers,For 3 servers how i can take output,all the local accounts and details of whether the access is Root or User access. cheers (1 Reply)
Discussion started by: ranjithm
1 Replies

4. AIX

Want to find the last access time for large group of files at one go

Dear All, I'm working as a DBA and dont have much knowledge at OS level commands.we have requirement that we need find the files which has been last accessed >= apr 2010and also access date <= apr 2010 for a large set of files.Do know some commands likeistat, ls -u.But can anyone provide me the... (4 Replies)
Discussion started by: dbanrb
4 Replies

5. Shell Programming and Scripting

Find file with exact access date

Hi I have to write command that find the files/dirs in the directory with access date equal to timestamp. ie or to be more precise I need to find files which are not equal to given timestamp drwxr-xr-x 2 oracle oinstall 4096 May 31 2007 tmp so need to have something like find . *... (2 Replies)
Discussion started by: zam
2 Replies

6. SCO

Find access times

I am working on a SCO Unixware 7.1.4 server and I have been asked to determine over the last year when a file was accessed, not just the last time it was accessed. Is there anyway to figure this out? Thanks in advance, Kevin Harnden (1 Reply)
Discussion started by: chefsride
1 Replies

7. AIX

Find all users with shell access

Hi, how do I find all users currently setup with shell access. Thanks in advance. Gav (1 Reply)
Discussion started by: LionFeen
1 Replies

8. Shell Programming and Scripting

find . but not access subdirectories

Hello, I'm trying to figure out how to prevent this find command from accessing this diretories's subdirectories! I tried the maxdepth and prune but they don't seem to work on SUN. So now i'm trying to set up a nawk command to not process any files that have "REVISED" in there name: find... (3 Replies)
Discussion started by: bobk544
3 Replies

9. UNIX for Advanced & Expert Users

find files with a perticular year of access

Hello all, Might be a silly question, on my AIX machine the year had changed to 2022 and some files were accessed on this date hence the time stamp on these files is with year 2022, there are many such files. i want to list all these file from the root dir and subdir with 2022 year... (3 Replies)
Discussion started by: pradeepmacha
3 Replies
Login or Register to Ask a Question