tychan@bradley.UUCP (06/14/88)
> I just got my 7300 shipped to me, and am trying to get it set up to run > as a multi user system. I've got a lot of the files that I dopn't want people > to mess with locked out, but I'm having problems with 'su' > > Is it possible to put a password on 'su' so everyone can't become the super > user, or should I just chmod the program to 4700? > > Thanks in advance, > > > ________________________________________________________________________ > | (Steve Kosloske) V | The easiers way to lock out other users is to become "su" and give it a passwd using the "passwd" command". Then only those knowing the password can become super user. "su" is also used for a user to become another user, it is also substitute user, this is for one user to have access to another's file and environment by becomming him/her. The othere user can have password to protect anyone from becoming him/her. T. Y. Chan Bradley University TEL No. (309) 677-2731 UUCP: {cepu,ihnp4,uiucdcs,noao}!bradley!buec3b2!tychan ARPA: cepu!bradley!buec3b2!tychan@seas.ucla.edu ATTMAIL: attmail!bradley!buec3b2!tychan
bob@rush.cts.com (Bob Ames) (06/19/88)
In article <9300074@bradley>, tychan@bradley.UUCP writes: > > The easiers way to lock out other users is to become "su" and give it a passwd > using the "passwd" command". Then only those knowing the password can become > super user. Sorry, on the UNIX PC 7300/3B1, knowing the root password only allows me to get to Super-User about 30 seconds sooner that without the root password. This system has many security holes in it. This was discussed some time back on the net. Does anyone have the archives on that discussion? Specifically, have the attempts at removing/ changing uasig and uaupd been successful? What about the other holes? Has anyone succeeded in providing an Office to someone and still manage to prevent access to Super-User? I can become SU within 1 minute of getting to *ANY* office on all unix-pcs that I know of. Bob Ames INET: bob@rush.cts.com Rush UNIKS PC Support Center Bell: 619-432-6860 UUCP: {cbosgd, ucsd, nosc, sun!ihnp4, hplabs!hp-sdd}!crash!rush!bob "I didn't expect the Spanish Inquisition!" {icus, jack}!/ "We each pay a fabulous price - for our visions of paradise." - N Peart 1987