| View previous topic :: View next topic |
| Author |
Message |
Parksy
n00b
Joined: 02 Nov 2004
Posts: 57
Location: Waterloo, ON
|
 Posted: Tue Dec 28, 2004 4:20 pm Post subject: You are not authorized to su root |
 |
|
I'm trying to finish up a new gentoo installation on my laptop. I'm using nptl and reiser4. I did the same thing with my desktop last week and it works fine.
Here's my problem:
| Code: | darcy@darthink ~ $ su -
You are not authorized to su root |
I'm pretty sure the groups are ok.
| Code: | darcy@darthink ~ $ groups
wheel audio users
darcy@darthink ~ $ grep -i wheel /etc/group
wheel::10:root,darcy |
I've tried other things from the FAQ.
| Code: | darthink ~ # ls -l /bin/su
-rwsr-xr-x 1 root root 33504 Dec 28 02:11 /bin/su |
That seems fine.
And so I log out and back in (just to be sure), and the problem persists.
The only weird thing is the error message:
| Code: | | You are not authorized to su root |
I've read a bunch of threads about this problem, but I've never seen that exact error message. For that reason I'm guessing it's some new package that's screwing things up (or missing?). I've tried re-emerging pam and shadow, but to no avail. I've also created new users, but they all have the same problem. |
|
| Back to top |
|
 |
papal_authority
Veteran
Joined: 31 Mar 2004
Posts: 1823
Location: Canada
|
| Posted: Tue Dec 28, 2004 4:23 pm Post subject: |
|
|
Dunno if this is a problem, but I've always used an "x" in the 2nd field:
| Code: | | wheel:x:10:root,darcy |
Maybe try that and then logout and in again...
_________________
The free market gave me gonorrhea. |
|
| Back to top |
|
|
Parksy
n00b
Joined: 02 Nov 2004
Posts: 57
Location: Waterloo, ON
|
| Posted: Tue Dec 28, 2004 4:49 pm Post subject: |
|
|
| papal_authority wrote: | Dunno if this is a problem, but I've always used an "x" in the 2nd field:
| Code: | | wheel:x:10:root,darcy |
Maybe try that and then logout and in again... |
Tried it, but no success. My other box is like mine was, and it works fine. Thanks for the idea though. |
|
| Back to top |
|
|
Trevoke
Advocate
Joined: 04 Sep 2004
Posts: 4099
Location: NY, NY
|
| Posted: Tue Dec 28, 2004 5:24 pm Post subject: |
|
|
Try just "su" ?
Shouldn't make a difference... But who knows.
_________________
Votre moment detente
What is the nature of conflict? |
|
| Back to top |
|
|
nickeh
Tux's lil' helper
Joined: 15 Feb 2004
Posts: 137
|
| Posted: Tue Dec 28, 2004 5:33 pm Post subject: |
|
|
Do a
instead to check if the user is in wheel group |
|
| Back to top |
|
|
Parksy
n00b
Joined: 02 Nov 2004
Posts: 57
Location: Waterloo, ON
|
| Posted: Tue Dec 28, 2004 6:03 pm Post subject: |
|
|
su does the same thing, and
| Code: | darthink ~ # groups darcy
wheel audio users |
|
|
| Back to top |
|
|
pjp
Administrator
Joined: 16 Apr 2002
Posts: 20589
|
| Posted: Wed Dec 29, 2004 6:26 am Post subject: |
|
|
How is /etc/pam.d/su configured?
_________________
Quis separabit? Quo animo? |
|
| Back to top |
|
|
r3pek
Retired Dev
Joined: 17 Sep 2003
Posts: 568
Location: Lisbon - Portugal
|
| Posted: Wed Dec 29, 2004 10:32 am Post subject: |
|
|
if you don't have pam installed, you can't su "normally".
you have to do:
| Code: | chown root:wheel /bin/su
chmod 4750 /bin/su |
and comment out SU_WHEEL_ONLY in /etc/login.defs |
|
| Back to top |
|
|
Parksy
n00b
Joined: 02 Nov 2004
Posts: 57
Location: Waterloo, ON
|
| Posted: Wed Dec 29, 2004 3:17 pm Post subject: |
|
|
| pjp wrote: | | How is /etc/pam.d/su configured? |
That file didn't exist. I copied it from my working system, but nothing changed.
| r3pek wrote: | if you don't have pam installed, you can't su "normally".
you have to do:
| Code: | chown root:wheel /bin/su
chmod 4750 /bin/su |
and comment out SU_WHEEL_ONLY in /etc/login.defs |
| Code: | emerge pam -s
<snip>
* sys-libs/pam
Latest version available: 0.77-r4
Latest version installed: 0.77-r4
Size of downloaded files: 3,552 kB
Homepage: http://www.kernel.org/pub/linux/libs/pam/
Description: Pluggable Authentication Modules
License: PAM
<snip> |
Is there anything else to install?
I tried changing the permissions on /bin/su and commenting out that line. I now get a password prompt, but even when I type the right password (I'm sure of it) I just get
| Code: | darcy@darthink ~ $ su -
Password:
Sorry. |
|
|
| Back to top |
|
|
Parksy
n00b
Joined: 02 Nov 2004
Posts: 57
Location: Waterloo, ON
|
| Posted: Sat Jan 15, 2005 8:47 pm Post subject: Again! |
|
|
I've left this post alone for a while because I've moved and started a new job. My laptop is sitting on the backburner, but this problem has now cropped up on my main desktop. It really came out of nowhere. I had shut down my computer to take out a network card, and suddenly this happened again.
I didn't do much before I shut down the pc. I had done sync'ed and checked new updates (emerge -uDpv) but I didn't actually go through with any of the updates. |
|
| Back to top |
|
|
Parksy
n00b
Joined: 02 Nov 2004
Posts: 57
Location: Waterloo, ON
|
| Posted: Sat Jan 22, 2005 10:34 pm Post subject: |
|
|
I've figured out my problem. I had set
in my use flags, and that disabled pam support from shadow. I removed that flag, then re-emerged shadow and pam. (Not sure if pam needed to be re-emerged, but it didn't seem to hurt). |
|
| Back to top |
|
|
|
Networking & Security
