摩托學園討論區

[訪客]

執行 su root 後為何直接就轉到 root 身份
怎樣才能讓 shell 出現輸入密碼提示？
而 sudo 到是會出現輸入密碼提示

[cshjssy]

先確認您目前的身份
本身已是root的話，轉成其他身份都不用密碼
(包含轉成root自己)

其他身份想轉成root的話直接輸入"su"就行了！
su後面不加使用者就是轉成root

[訪客]

我目前是一般身份
所以 sudo 會要求輸入密碼
但是 su/su root/su - root 都不會要求輸入密碼？

[molopoly]

你是不是有動過/etc/pam.conf或/etc/pam.d/*這些東西？
剛剛看了一下/etc/pam.d/su的內容，
可以設定成不用pass word就可以用su了，
不過你為什麼會想動這些檔案呢？
對了，sudo所檢驗的好像是自己原本的密碼吧，
如果沒限制可以使用的動作，
好像跟沒限制一樣啊。

[訪客]

沒用耶！/etc/pam.d/su 沒被改動

你為什麼會想動這些檔案呢？

裝完就這樣, 所以我想改回來比較安全吧！
我是用 B2DpureGNOME

[Tetralet]

執行 su root 後為何直接就轉到 root 身份
怎樣才能讓 shell 出現輸入密碼提示？

原始的 /etc/pam.d/su 如下：

代碼: 選擇全部

#
# The PAM configuration file for the Shadow `su' service
#

# Uncomment this to force users to be a member of group root
# before they can use `su'. You can also add "group=foo" to
# to the end of this line if you want to use a group other
# than the default "root".
# (Replaces the `SU_WHEEL_ONLY' option from login.defs)
# auth       required   pam_wheel.so

# Uncomment this if you want wheel members to be able to
# su without a password.
# auth       sufficient pam_wheel.so trust

# Uncomment this if you want members of a specific group to not
# be allowed to use su at all.
# auth       required   pam_wheel.so deny group=nosu

# This allows root to su without passwords (normal operation)
auth       sufficient pam_rootok.so

# Uncomment and edit /etc/security/time.conf if you need to set
# time restrainst on su usage.
# (Replaces the `PORTTIME_CHECKS_ENAB' option from login.defs
# as well as /etc/porttime)
# account    requisite  pam_time.so

# The standard Unix authentication modules, used with
# NIS (man nsswitch) as well as normal /etc/passwd and
# /etc/shadow entries.
@include common-auth
@include common-account
@include common-session

# Sets up user limits, please uncomment and read /etc/security/limits.conf
# to enable this functionality.
# (Replaces the use of /etc/limits in old login)
session    required   pam_limits.so


請參考看看吧...

[redjoe]

/etc/sudoers