How to restrict su from root-to-nis-clients

Spread the love
  • 1
    Share

Yes, there is a way to restrict this behaviour. This behaviour of su is governed by the PAM module (Plugable Authentication Module):

You must edit /etc/pam.d/su

comment the line :

auth       sufficient pam_rootok.so

like this:

#auth       sufficient pam_rootok.so

after that su from root will ask for the user password.

Leave a Reply

Your email address will not be published. Required fields are marked *