Light Sudo lockdown
- Thread starter Rwac
- Start date
Hello 
Right, check out /etc/pam.d/su and uncomment:
auth required pam_wheel.so use_uid
Add your users to the wheel group.
Root by default is a member of the wheel group, so you could then remove root from this group. Although, I'm unsure if that would break anything...
You might also want to look at creating a command specification in sudo and blocking it that way...
Right, check out /etc/pam.d/su and uncomment:
auth required pam_wheel.so use_uid
Add your users to the wheel group.
Root by default is a member of the wheel group, so you could then remove root from this group. Although, I'm unsure if that would break anything...
You might also want to look at creating a command specification in sudo and blocking it that way...
Why aren't you sipping coctails by the beach!
Thanks! It's all kicking off here
Thanks! It's all kicking off here
Hello
Right, check out /etc/pam.d/su and uncomment:
auth required pam_wheel.so use_uid
Add your users to the wheel group.
Root by default is a member of the wheel group, so you could then remove root from this group. Although, I'm unsure if that would break anything...
You might also want to look at creating a command specification in sudo and blocking it that way...