Gentoo Forums
Gentoo Forums
Gentoo Forums
Quick Search: in
[solved] su - permission denied
View unanswered posts
View posts from last 24 hours

 
Reply to topic    Gentoo Forums Forum Index Other Things Gentoo
View previous topic :: View next topic  
Author Message
AgBr
Apprentice
Apprentice


Joined: 06 Nov 2010
Posts: 195

PostPosted: Thu Sep 12, 2013 4:49 pm    Post subject: [solved] su - permission denied Reply with quote

If I try to su to root I get a permission denied lately. If I change SU_WHEEL_ONLY to "yes" I get informed that the variable in login.defs is unknown. Is there anyone who can enlighten me, what to look for?

Last edited by AgBr on Thu Sep 12, 2013 5:16 pm; edited 1 time in total
Back to top
View user's profile Send private message
eccerr0r
Watchman
Watchman


Joined: 01 Jul 2004
Posts: 9824
Location: almost Mile High in the USA

PostPosted: Thu Sep 12, 2013 5:12 pm    Post subject: Reply with quote

First, read https://forums.gentoo.org/viewtopic-t-23378.html
Next is this error coming from your shell or from su? Post exact text as it comes out. Make sure the permissions on the su binary is correct but if it changed, need to figure out what changed it (rootkit? virus? bug?)

Other things past the FAQ is making sure your PAM configs are up to date with etc-update/dispatch-conf.
_________________
Intel Core i7 2700K/Radeon R7 250/24GB DDR3/256GB SSD
What am I supposed watching?
Back to top
View user's profile Send private message
AgBr
Apprentice
Apprentice


Joined: 06 Nov 2010
Posts: 195

PostPosted: Thu Sep 12, 2013 5:19 pm    Post subject: Reply with quote

I had to comment the following line in /etc/pam.d/su

#auth required pam_wheel.so use_uid

the variable SU_WHEEL_ONLY in /etc/login.def which is referenced in su(1) is missleading

Thank you for looking into this
Back to top
View user's profile Send private message
eccerr0r
Watchman
Watchman


Joined: 01 Jul 2004
Posts: 9824
Location: almost Mile High in the USA

PostPosted: Thu Sep 12, 2013 9:35 pm    Post subject: Reply with quote

Is there a reason why you don't put all users who legitimately know the root password in the wheel group?

Is wheel not working?

Or do you have a yp/nis system or something that you don't want to edit groups the same for all machines in the domain?
_________________
Intel Core i7 2700K/Radeon R7 250/24GB DDR3/256GB SSD
What am I supposed watching?
Back to top
View user's profile Send private message
Display posts from previous:   
Reply to topic    Gentoo Forums Forum Index Other Things Gentoo All times are GMT
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum