System Administration
cancel
Showing results for 
Search instead for 
Did you mean: 

Regarding su command between general user

 
SOLVED
Go to solution
Minoru Asano
Frequent Advisor

Regarding su command between general user

Hello,

I would like to restrict su command for general user account.

[ENVIRONMENT]
RHEL ES 4 up2
RHEL ES 3 up6

[SITUATION]
For security reason, we would like to know how to disable to su command between general user account.
But we allow su command from general user to root , and from root to general user.

For example, we would like to disable "su" for "peter" to disallow to change user to "john".
But we would like to allow user "peter" to switch user to root.

[QUESTION]
- What shall we do to achieve this hope ?
For example, we should change any file, so on.

Thank you for advice.
Best Regards.
/Minoru.


3 REPLIES
Ivan Krastev
Honored Contributor

Re: Regarding su command between general user

If user "peter" can su to "root" there is no problem after that to su to user "john".

I thing that such setup will be for nothing.

regards,
ivan
Rob Leadbeater
Honored Contributor
Solution

Re: Regarding su command between general user

Hi,

As Ivan says, what you have described is pointless.

Once "peter" has switched user to root, then he will be able to switch back to any user, not just "john".

Cheers,

Rob
Minoru Asano
Frequent Advisor

Re: Regarding su command between general user

Thank you for reply.

I got many answer, so I close this thread.

Best Regards.
/Minoru