Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP Path: utzoo!watmath!clyde!rutgers!seismo!mcvax!diku!olamb!kimcm From: kimcm@olamb.UUCP Newsgroups: comp.unix.wizards Subject: Re: su Security Message-ID: <200@olamb.UUCP> Date: Fri, 13-Feb-87 09:24:07 EST Article-I.D.: olamb.200 Posted: Fri Feb 13 09:24:07 1987 Date-Received: Thu, 19-Feb-87 06:28:10 EST References: <4263@brl-adm.ARPA> Organization: AmbraSoft A/S (Denmark) Lines: 29 In article <4263@brl-adm.ARPA>, rgenter@j.bbn.COM (Rick Genter) writes: > A program to check a table of users to see if they are authorized to > execute 'su' is of limited utility, if any. If a user has the root > password and they are excluded from running 'su', there is nothing to > prevent them from just running 'login' and logging in as the superuser. > If you are going to modify 'su', you might as well modify 'login' as > well, perhaps to ask a second password or to check from which terminal > the login is being attempted (except that I believe System V already > does this through the use of /etc/securetty?). > - Rick [1] If a user has the root password he can do what he want's to including putting himself on the list of allowed su users. But that's not the point. A user in the su allowed group doesn't have to know the root password. There's nothing that prevents modifying the su program to check the tty from where the su is attempted to see whether it is a securetty, I believe that even would be a win. thereby you'll prevent super-user sessions from unwanted ttys such as dial in lines etc. [2] The system V approach (at least on my 3B computer) is even more restrictive with root login's. No it doesn't follow the BSD standard with /etc/securetty, but have hardcoded into the login program that root is only allowed to log in on the console. Too bad if you like me doesn't have the source code, yes you can make a new login program that have all the "nasty" & nice features of BSD systems like /etc/securetty ~/.hushlogin /etc/nologin etc... Kindly Regards Kim Chr. Madsen