Re: locking down box
From: Jonathan Berry (berryja_at_gmail.com)
Date: 05/11/05
- Previous message: Rahul Sundaram: "Re: OT: What's the deal with Ubuntu?"
- In reply to: List: "locking down box"
- Next in thread: David Hoffman: "Re: locking down box"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Date: Wed, 11 May 2005 12:17:44 -0500 To: For users of Fedora Core releases <fedora-list@redhat.com>
On 5/11/05, List <list@nchost.net> wrote:
> How do i only allow wheels to su - ?
>
> thanks
Don't give users outside the wheel group the root password. I don't
think you can configure su - to limit use. I guess you might be able
to do something strange with permissions, but I wouldn't advise it;
you would probably break something that way.
If you want to control who can do things as root, I recommend you look
into sudo. You can set it to where only users in the wheel group can
use sudo, and you can let them use it without them knowing the root
password if you want.
man sudo
Google will find plenty of examples and other information. There
should even be a good example in the /etc/sudoers file (be sure to
edit the file as root with the "visudo" command).
But, if you don't want users to become root, then you shouldn't give
them the root password (and you should make it hard to guess or
crack), it's that simple. Though, anyone with physical access to a
machine is capable of becoming root, especially if they can reboot the
machine. Be sure to keep an eye on your logs if you don't trust your
users (that's never a good situation to be in, though).
Jonathan
-- fedora-list mailing list fedora-list@redhat.com To unsubscribe: http://www.redhat.com/mailman/listinfo/fedora-list
- Previous message: Rahul Sundaram: "Re: OT: What's the deal with Ubuntu?"
- In reply to: List: "locking down box"
- Next in thread: David Hoffman: "Re: locking down box"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
Relevant Pages
|
|
