https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111354#M148900 You can (and should) also restrict the list of users allowed to su to root<BR /><BR />configure /etc/default/security<BR />SU_ROOT_GROUP=<NAME of="" the="" specific="" group=""><BR /><BR />Rgds,<BR />Jean-Luc<BR /><BR /></NAME> Wed, 05 Nov 2003 13:53:43 GMT Jean-Luc Oudart 2003-11-05T13:53:43Z https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111349#M148895 How do you block root from remote access? restrict him to console only Wed, 05 Nov 2003 13:19:38 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111349#M148895 Paul T. Cardullo_1 2003-11-05T13:19:38Z https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111350#M148896 You can do it by creating a file /etc/securetty. Add console in the file and then you will be able to access root only from console.<BR /><BR /># man login (for more details) Wed, 05 Nov 2003 13:22:28 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111350#M148896 Helen French 2003-11-05T13:22:28Z https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111351#M148897 Paul,<BR /> Create /etc/securetty file and add console into it.<BR /><BR /> man securetty for more details.<BR />HTH,<BR />Umapathy Wed, 05 Nov 2003 13:23:37 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111351#M148897 Umapathy S 2003-11-05T13:23:37Z https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111352#M148898 oops sorry. <BR />man login for more details.<BR /><BR />HTH,<BR />Umapathy Wed, 05 Nov 2003 13:25:30 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111352#M148898 Umapathy S 2003-11-05T13:25:30Z https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111353#M148899 Hi Paul,<BR /><BR />Do the following<BR /><BR />echo console &gt; /etc/securetty<BR />chmod 400 /etc/securetty<BR />chown root:sys /etc/securetty<BR /><BR />That'll do it.<BR /><BR />HTH,<BR />Jeff Wed, 05 Nov 2003 13:30:04 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111353#M148899 Jeff Schussele 2003-11-05T13:30:04Z https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111354#M148900 You can (and should) also restrict the list of users allowed to su to root<BR /><BR />configure /etc/default/security<BR />SU_ROOT_GROUP=<NAME of="" the="" specific="" group=""><BR /><BR />Rgds,<BR />Jean-Luc<BR /><BR /></NAME> Wed, 05 Nov 2003 13:53:43 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-access/m-p/3111354#M148900 Jean-Luc Oudart 2003-11-05T13:53:43Z