daddy at happypenguincomputers
Mar 18, 2012, 5:56 AM
Post #7 of 7
On March 18, 2012 at 6:22 AM pk <peterk2 [at] coolmail> wrote:
> On 2012-03-18 04:11, Bruce Hill, Jr. wrote:
> > Am I eternally confused?
> I have no idea... besides, eternity is a long time... ;-)
> > su - change user ID or become superuser
> > It's not _only_ to become root (maybe theoretically if you only have
> > normal user). On a true multiuser system you can su (switch user) to
> > user.
> Yes, correct. Sorry if this was implied; I only talked about Dales
> specific problem...
> > Since _every_ computer I own or have _ever_ built has -pam globally,
> > not a requirement to use su ... is it?
> Nope. Again, I was only trying to help Dale... If su is owned by
> 'root.root' (user.group) I assumed that it's execution was controlled by
> something else since it otherwise should be owned by 'root.wheel'
> (unless you're part of the 'root' group, which I don't think is
> recommended). If you're not running pam then I assume your 'su' is owned
> by 'root.wheel'?
> Best regards
> Peter K
The ownership is not changed, with user(s) where it's necessary (never on
servers) in the wheel group.
mingdao [at] t42 ~ $ ls -l /bin/su
-rws--x--x 1 root root 53440 Oct 7 07:00 /bin/su
mingdao [at] t42 ~ $ ls -l /usr/bin/sudo
---s--x--x 2 root root 71144 Feb 22 06:34 /usr/bin/sudo
# less /etc/sudoers
## Same thing without a password
%wheel ALL=(ALL) NOPASSWD: ALL
mingdao [at] t42 ~ $ id uid=1000(mingdao) gid=1000(mingdao)
The 'stuff' happens when you issue "visudo" and edit the above file. I've
never studied this on Gentoo, but also have:
-rwxr-xr-x 1 root root 180696 Feb 22 06:34 /usr/lib64/sudo/sudoers.so
Meh ... too much to learn for an old dog like me.
Happy Penguin Computers >`)
126 Fenco Drive ( \
Tupelo, MS 38801 ^^
support at happypenguincomputers dot com