[plug] Help with SU

Phillip Bennett phillip at mve.com
Fri Mar 30 23:54:24 WST 2007 

Hi Mark,

Yes, I tried that too.  That was one of the many things I tried.

I have actually found a post on another error I recieved and have found that
something has reset the permissions on the su executable.  I actually
thought I'd have tried to su to another valid user, but evidently I hadn't.
I thought I'd try it again today and I got another error (su: cannot set
groups: Operation not permitted)

Apparently when the permissinos are set as : rwxr-xr-x  root   named  60480
Apr 10  2006 /bin/su    it's not a good thing.

Goodness knows what the hell has happened, but I set the permissions back
to: -rwsr-xr-x  1 root root 60480 Apr 10  2006 /bin/su

And it's working again.

Thanks for all the help though.  It has been a very weird problem.  With
random permissions like this though, I think it might be time to rebuild.
Has anyone seen this type of thing before?

Phil. 

-----Original Message-----
From: plug-bounces at plug.org.au [mailto:plug-bounces at plug.org.au] On Behalf
Of Daniel Pearson (Flashware Solutions)
Sent: 30 March 2007 16:24
To: plug at plug.org.au
Subject: Re: [plug] Help with SU

Mark O'Shea wrote:
> On Thu, 2007-03-29 at 14:46 +0100, Phillip Bennett wrote:
>   
>> However, now I can't su to root.  It gives me a 'wrong password' error.
>> Fortunately, I can still use 'sudo su -' to get root.
>>     
>
>   
>> Can anyone shed any light on why this would happen?  Or at least 
>> where to look?  I've checked the PAM files and the nsswitch.conf.  
>> There's nothing in any of the logs (messages, secure etc..)  I'm 
>> completely stumped.  I thought I knew how logging in worked, but I 
>> guess I've missed something fairly important.
>>     
> Curious.  There's *nothing* in the logs for the auth facility (check 
> where it's going in the config for your syslogd, whichever one you 
> use) for su? Not even for the successful ones executed under sudo?
>
> It sounds like you can authenticate okay for everything apart from su 
> using local password files now that your not going through kerberos to 
> authenticate to ad.  This does suggest pam config, maybe things are 
> out of order.  What does the pam config for su actually say?
>
>   
What about sudo passwd root ?
_______________________________________________
PLUG discussion list: plug at plug.org.au
http://www.plug.org.au/mailman/listinfo/plug
Committee e-mail: committee at plug.linux.org.au

More information about the plug mailing list