Path: utzoo!utgpu!news-server.csri.toronto.edu!rutgers!uwm.edu!rpi!zaphod.mps.ohio-state.edu!think.com!linus!nixbur!nixpbe!nixsin!koerberm
From: koerberm@nixsin.UUCP (Mathias Koerber)
Newsgroups: comp.unix.questions
Subject: how to create a user, which can't be su'd to ?
Keywords: su
Message-ID: <1460@nixsin.UUCP>
Date: 16 Jan 91 06:48:59 GMT
Organization: Nixdorf Regional HQ Pte Ltd, Singapore
Lines: 20

Howdy,

I have a (small) system, which I want all my staff to be able to shutdown in
the evening, without having to give them full root access. So i created a user
"shut", whose .profile calls /etc/shutdown with all the necessary parameters.

I want to protect this account against being accessed via su, so that it is not
used accidentally. How can I do this?

I already check the number of logged-in users to be one (=shut), so that it
only can be used once everybody is out. But a su would not increase that number.

Any help appreciated

Mathias
-- 
Mathias Koerber  | S iemens             | EUnet: koerber.sin@nixdorf.de
2 Kallang Sector | N ixdorf             | USA:   koerber.sin@nixdorf.com 
S'pore 1344      | I nformation Systems | Tel: +65/7402852 | Fax: +65/7402834
* Packed with Power, SNIckers really satisfy  (or do they? Ask them gals :-) )*