I am encountering an odd problem with su. Up until quite recently I was
able to connect to one of my servers (CentOS-5.2) via ssh as an ordinary
user and then, from the shell, perform an $ su -l to obtain root access.
Now when I try to do this I see the following:
$ su -l
Password:
su:
James B. Byrne wrote:
Any ideas as to what might be happening here and how I might fix it?
It's a long shot but check that /bin/su is setuid ?
From a 5.1 system:
-rwsr-xr-x 1 root root 24060 Mar 21 2007 /bin/su
nate
___
CentOS mailing list
On Wed Jan 14 17:16:01 UTC 2009, nate centos at linuxpowered.net wrote:
It's a long shot but check that /bin/su is setuid ?
From a 5.1 system:
-rwsr-xr-x 1 root root 24060 Mar 21 2007 /bin/su
This is what I have on that host:
# ll /bin/su
-rwxr-xr-x 1 root root 24120 May 24 2008
I noticed that the suid mode was missing and set it with chmod u+s
/usr/bin/su. Now the permissions are:
$ ll $(which su)
-rwsr-xr-x 1 root root 24120 May 24 2008 /bin/su
And now su -l works for ordinary users. Thank you very much.
I am certain that I have not been changing file modes in
James B. Byrne wrote:
I noticed that the suid mode was missing and set it with chmod u+s
/usr/bin/su. Now the permissions are:
$ ll $(which su)
-rwsr-xr-x 1 root root 24120 May 24 2008 /bin/su
And now su -l works for ordinary users. Thank you very much.
I am certain that I have not
James B. Byrne wrote on Wed, 14 Jan 2009 16:11:52 -0500 (EST):
Does anyone have any idea how this change could occur?
There are some security tools that could be configured to reset SUID bits
on files in certain paths with their default templates.
Kai
--
Kai Schätzl, Berlin, Germany
Get
6 matches
Mail list logo