- 論壇徽章:
- 0
|
請(qǐng)教:如何禁止遠(yuǎn)程用戶su成root?
我在RH8下做過(guò),不知道Solaris是不是這樣的:
修改 /etc/pam.d/su
把 auth required /lib/security/pam_wheel.so use_uid 的注釋去掉. 然后把你要給su 權(quán)限的用戶放入到wheel 組里,這樣就可以了
這是我得 su 文件:
uth sufficient /lib/security/pam_rootok.so
# Uncomment the following line to implicitly trust users in the "wheel" group.
#auth sufficient /lib/security/pam_wheel.so trust use_uid
# Uncomment the following line to require a user to be in the "wheel" group.
auth required /lib/security/pam_wheel.so use_uid
auth required /lib/security/pam_stack.so service=system-auth
account required /lib/security/pam_stack.so service=system-auth
password required /lib/security/pam_stack.so service=system-auth
session required /lib/security/pam_stack.so service=system-auth
session optional /lib/security/pam_xauth.so |
|
免費(fèi)注冊(cè)
發(fā)表于 2003-04-16 10:48
