AW: [rsbac] Problem with /bin/login

Amon Ott rsbac@rsbac.org
Mon May 6 11:16:01 2002

Previous message: AW: [rsbac] Problem with /bin/login
Next message: [rsbac] OpenWeekend at Prague University
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Monday, 6. May 2002 11:04, Toggweiler Stephan wrote:
> Thank you it works now.
> 
> When I login as root (on the console or ssh) the role will not be changed to
> System_Admin, is that the problem that there is no real setuid() when you
> login as root?

Right. You might patch login to do that, it will also give you more control 
over who can login. With RSBAC 1.1.2, there is also no control if you setuid 
to the same uid. 1.2.0 always checks.

> I have now disallowed root to login vom console or per ssh, and su from
> secoff to get root privileges.

That will do.

Amon.
--
http://www.rsbac.org

Previous message: AW: [rsbac] Problem with /bin/login
Next message: [rsbac] OpenWeekend at Prague University
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]