Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!usc!wuarchive!mit-eddie!bloom-beacon!deccrl!news.crl.dec.com!treese
From: treese@crl.dec.com (Win Treese)
Newsgroups: comp.unix.ultrix
Subject: Re: su bug in Ultrix 4.1 still there
Message-ID: <1990Dec14.065543.25660@crl.dec.com>
Date: 14 Dec 90 06:55:43 GMT
References: <RUSTY.90Dec10144456@belch.Berkeley.EDU>
	<1990Dec11.045743.27648@decuac.dec.com>
	<1990Dec12.024324.13947@cerberus.bhpese.oz.au>
	<1990Dec12.044432.18977@decuac.dec.com>
Sender: news@crl.dec.com (USENET News System)
Distribution: comp
Organization: DEC Cambridge Research Lab
Lines: 11
In-Reply-To: mjr@hussar.dco.dec.com's message of 12 Dec 90 04:44:32 GMT


I can imagine sites that want the C2 features but allow the ability to
su on a pseudo-tty without letting root login there directly.

It seems to me that there is a straightforward solution to this: add
another keyword for /etc/ttys (e.g., "allowsu").

I'm not speaking for Digital, of course.  Just a thought.

Win Treese						Cambridge Research Lab
treese@crl.dec.com					Digital Equipment Corp.