HPE Community
Operating System - HP-UX
1831891 Members
3165 Online
110031 Solutions
New Discussion

Restricting su to root

 
Greg Dick_1
Occasional Advisor

‎06-13-2001 10:33 AM

‎06-13-2001 10:33 AM

Restricting su to root

Does anyone know of an easy way to restict which system users have the ability to su to root. I don't wish to restict the ability for users to su between themselves, but would like to only allow a few users to be able to su to root. Any ideas ??
0 Kudos
Reply
5 REPLIES 5
Mark Vollmers
Esteemed Contributor

‎06-13-2001 11:33 AM

‎06-13-2001 11:33 AM

Re: Restricting su to root

I think that the general opinion in the forums for restricting who can su to root is to install sudo. There are a bunch of threads about how to config this (search for sudo) to give certain users superuser abilities or to lock out people from using su.

Mark
"We apologize for the inconvience" -God's last message to all creation, from Douglas Adams "So Long and Thanks for all the Fish"
0 Kudos
Reply
Mark Vollmers
Esteemed Contributor

‎06-13-2001 11:37 AM

‎06-13-2001 11:37 AM

Re: Restricting su to root

In addition to sudo, here are some ideas for modifications that will check for root id, etc.

http://forums.itrc.hp.com/cm/QuestionAnswer/1,1150,0xaf7e37f45ef7d4118fef0090279cd0f9,00.html

Mark
"We apologize for the inconvience" -God's last message to all creation, from Douglas Adams "So Long and Thanks for all the Fish"
0 Kudos
Reply
Michael Tully
Honored Contributor

‎06-13-2001 03:02 PM

‎06-13-2001 03:02 PM

Re: Restricting su to root

Hi Greg,

Below is the link to the sudo site:

http://www.courtesan.com/sudo/

One thing that wasn't mentioned is who
has access to the root account? Does your
organisation allow more than system
administrator to access it, i.e security??

They only people who have the root password
in our organisation is us system administrators,
our manager and a copy of these passwords which
are in a safe, where only two people have access.
Works for us.....

Good luck
Michael
Anyone for a Mutiny ?
0 Kudos
Reply
Vincenzo Restuccia
Honored Contributor

‎06-14-2001 01:54 AM

‎06-14-2001 01:54 AM

Re: Restricting su to root

Compile a C program with permission 4501.
0 Kudos
Reply
Paula J Frazer-Campbell
Honored Contributor

‎06-14-2001 11:57 AM

‎06-14-2001 11:57 AM

Re: Restricting su to root

Hi


Easy fix -Do not tell them the root password!!!


Paula
If you can spell SysAdmin then you is one - anon
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.