On Thu, Mar 30, 2000 at 12:18:52PM +0100, Colin Watson wrote: > Brian Clark <[EMAIL PROTECTED]> wrote: > >I ended up just adding sysadmin to staff, then > > > >% /bin/chgrp staff /bin/su; /bin/chmod 4750 /bin/su > > Make sure you let suidmanager know about that (using suidregister) or > you might find /bin/su's permissions changing back next time you upgrade > the login package.
sooner then that, you will find the permissions changed back the next time cron.daily get fired off ;-) suidregister /bin/su root staff 4754 should do the trick. i don't see the point in making su non-readable just non-executable. -- Ethan Benson http://www.alaska.net/~erbenson/
pgp3CTtodujNx.pgp
Description: PGP signature
