Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in

  FAQ | Search | Memberlist | Usergroups | Statistics | Profile | Log in to check your private messages | Log in | Register

Cannot SU over SSH [SOLVED]
 View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Networking & Security
View previous topic :: View next topic  
Author Message
coralsaw
n00b
n00b


Joined: 09 Jun 2005
Posts: 57
PostPosted: Fri Jun 17, 2005 6:44 am    Post subject: Cannot SU over SSH [SOLVED] Reply with quote
Hello,

SSH for normal users works fine (over STUNNEL, thx to helpful suggestions). However, I can't SU once I login in as normal user.

- Same normal user can SU locally
- PermitRootLogin set to 'NO' in /etc/sshd_config. Shouldn't this only be for direct root logins, and not SU?

Any help is appreciated,

TiA

/coralsaw

Last edited by coralsaw on Fri Jun 17, 2005 12:46 pm; edited 1 time in total
Back to top
View user's profile Send private message
Kruegi
Guru
Guru


Joined: 09 Feb 2005
Posts: 406
Location: Clausthal-Zellerfeld; DE
PostPosted: Fri Jun 17, 2005 6:50 am    Post subject: Reply with quote
Is the user in wheel group?

Thomas
Back to top
View user's profile Send private message
mattmatteh
Guru
Guru


Joined: 10 Mar 2004
Posts: 449
Location: near chicago
PostPosted: Fri Jun 17, 2005 6:50 am    Post subject: Reply with quote
can you copy the exact terminal output with the rejection?

matt
Back to top
View user's profile Send private message
coralsaw
n00b
n00b


Joined: 09 Jun 2005
Posts: 57
PostPosted: Fri Jun 17, 2005 7:30 am    Post subject: Reply with quote
Kruegi,
the user can SU locally, so he should be in the wheel group.

mattmatteh,
Here's the (sanitized) output from SU:

Code:
Using username "user".
user@host's password:
Last login: Fri Jun 17 09:54:17 2005 from localhost
[10:28][user:~]$ su
Password:
su: Permission denied
Sorry.


Another added bit of info is that "user" cannot even SU as "user", so it might not have anything to do with root privileges.

/coralsaw
Back to top
View user's profile Send private message
coralsaw
n00b
n00b


Joined: 09 Jun 2005
Posts: 57
PostPosted: Fri Jun 17, 2005 10:05 am    Post subject: Reply with quote
Update: The user is NOT in the wheel group, this should explain it.

I'm 100% sure that I've SUed from this user two days ago, how could it have been changed? :?:

/coralsaw
Back to top
View user's profile Send private message
nephros
Advocate
Advocate


Joined: 07 Feb 2003
Posts: 2139
Location: Graz, Austria (Europe - no kangaroos.)
PostPosted: Fri Jun 17, 2005 11:35 am    Post subject: Reply with quote
coralsaw wrote:
Update: The user is NOT in the wheel group, this should explain it.

I'm 100% sure that I've SUed from this user two days ago, how could it have been changed? :?:

couldn't. Except if you weren't paying attention with etc-update and it "updated" your groups file.
_________________
Please put [SOLVED] in your topic if you are a moron.
Back to top
View user's profile Send private message
coralsaw
n00b
n00b


Joined: 09 Jun 2005
Posts: 57
PostPosted: Fri Jun 17, 2005 12:46 pm    Post subject: Reply with quote
Quite possible. I'll mark this solved. Thx.

/coralsaw
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Networking & Security All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



 Links: forums.gentoo.org | www.gentoo.org | bugs.gentoo.org | wiki.gentoo.org | forum-mods@gentoo.org

Copyright 2001-2025 Gentoo Foundation, Inc. Designed by Kyle Manna © 2003; Style derived from original subSilver theme. | Hosting by Gossamer Threads Inc. © | Powered by phpBB 2.0.23-gentoo-p11 © 2001, 2002 phpBB Group
Privacy Policy