https://community.hpe.com/t5/operating-system-hp-ux/two-questions-with-regards-accounts-on-the-trusted-server/m-p/4217959#M327031 I wanted to add more infor on my 2nd question.<BR /><BR />Currently, the root is being set to log into the system by su from a regular user, and the audting person wants to show her that is the case on this system. I only tell her this is required by the trusted system. <BR /><BR />Is there any field or command I can prove that?<BR /><BR /> Tue, 17 Jun 2008 14:59:42 GMT Hanry Zhou 2008-06-17T14:59:42Z https://community.hpe.com/t5/operating-system-hp-ux/two-questions-with-regards-accounts-on-the-trusted-server/m-p/4217957#M327029 1. how can I tell if "sys", "bin"... accounts are disabled or not?<BR /><BR />2. currently root only be allowed to get in via another regular user account by "su", but where exactly is this function being set? we are not using /etc/security...<BR /><BR />Thanks, Tue, 17 Jun 2008 14:29:33 GMT https://community.hpe.com/t5/operating-system-hp-ux/two-questions-with-regards-accounts-on-the-trusted-server/m-p/4217957#M327029 Hanry Zhou 2008-06-17T14:29:33Z https://community.hpe.com/t5/operating-system-hp-ux/two-questions-with-regards-accounts-on-the-trusted-server/m-p/4217958#M327030 Shalom,<BR /><BR />1) Check the shell entry in /etc/passwd<BR />Don't mess with either or your system might cease doing productive work.<BR /><BR />2) /etc/pam.d/system-auth and/or su in the same directory.<BR /><BR />SEP<BR /><BR /> Tue, 17 Jun 2008 14:52:16 GMT https://community.hpe.com/t5/operating-system-hp-ux/two-questions-with-regards-accounts-on-the-trusted-server/m-p/4217958#M327030 Steven E. Protter 2008-06-17T14:52:16Z https://community.hpe.com/t5/operating-system-hp-ux/two-questions-with-regards-accounts-on-the-trusted-server/m-p/4217959#M327031 I wanted to add more infor on my 2nd question.<BR /><BR />Currently, the root is being set to log into the system by su from a regular user, and the audting person wants to show her that is the case on this system. I only tell her this is required by the trusted system. <BR /><BR />Is there any field or command I can prove that?<BR /><BR /> Tue, 17 Jun 2008 14:59:42 GMT https://community.hpe.com/t5/operating-system-hp-ux/two-questions-with-regards-accounts-on-the-trusted-server/m-p/4217959#M327031 Hanry Zhou 2008-06-17T14:59:42Z https://community.hpe.com/t5/operating-system-hp-ux/two-questions-with-regards-accounts-on-the-trusted-server/m-p/4217960#M327032 1) getprpw sys<BR /> getprpw bin<BR /><BR />2) root retriction possibilities are<BR /> /etc/securetty ( restrict direct telnet for root, does not apply to exec, ssh, remsh...)<BR /> /etc/profile ( possible root user ID check for tty )<BR /> /.profile ( same as above)<BR /><BR /> Tue, 17 Jun 2008 18:55:44 GMT https://community.hpe.com/t5/operating-system-hp-ux/two-questions-with-regards-accounts-on-the-trusted-server/m-p/4217960#M327032 Tim Nelson 2008-06-17T18:55:44Z