su: blacklist users
Net Llama!
netllama
Fri May 26 10:40:03 PDT 2006
On Fri, 26 May 2006, Dominic Lepiane wrote:
> On May 25, 2006 09:04 pm, Man-wai CHANG wrote:
> > > So far as I know, the best way to control access to who has access to
> > > super-user privileges is with "sudo". My understanding is that what sudo
> > > is for.
> >
> > sudo is no replacement for su. It's not convenient if you have lots of
> > commands to run.
>
> $ sudo su
> # uname
> # cd
> # ls
> # ^D
> $
>
> ?
>
> Do not be under the misaprehension that sudo limits the commands a user can
> run as the super-user. It grants super-user access. That's what it does and
Because it does. sudo can be configured to restrict the commands that a
user can run. Just because your system hasn't been restricted in that
fashion doesn't mean its not possible.
--
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Lonni J Friedman netllama at linux-sxs.org
LlamaLand http://netllama.linux-sxs.org
More information about the Linux-users
mailing list