On Thu, Jan 25, 2007 at 10:14:07AM -1000, Joseph Kowalski wrote: > Darren J Moffat wrote: > >Aside: I find it interesting that there is a GNU coreutils su(1) but > >not a login(1), and also that it is su(1) not su(1M) (and lives in > >/usr/bin not /usr/sbin). > Its because su is a utility designed to let joe-user (that's me!) become > the trusted user. joe-user isn't expected to > have /usr/sbin on the PATH. (I'm not sure this accounts for the (1)/(1M) > bit.)
OT... So you're saying that su(1M) should really be su(1) and it should be in /bin? I tend to agree. Think of pfexec(1) as a related utility, a sort of sub-set of su(1). And if we had a way to gain authorizations by providing additional authentication, ala sudo, then pfexec(1) would be even closer to a sub-set of su, or perhaps vice-versa, su being a sub-set of pfexec. pfexec(1) is in /bin; su(1M) belongs in /bin too. Nico --
