FC6(working 'su -') vs Centos5(failing 'su -')
Ian Malone
ibmalone at gmail.com
Sat Jun 2 21:05:38 UTC 2007
Andrey Shmigelsky wrote:
>> Tony Nelson wrote:
>>> At 11:13 AM -0500 6/2/07, Justin W wrote:
>>>
>>>> ...
>>>>
>>>> May 31 15:04:24 zeus su: pam_unix(su-l:auth): authentication
>>>> failure; logname=justin uid=1000 euid=0 tty=pts/0 ruser=justin
>>>> rhost= user=root
>>>>
>>>> type=USER_AUTH msg=audit(1180641866.633:212): user pid=2570 uid=1000
>>>> auid=1000 subj=user_u:system_r:unconfined_t:s0 msg='PAM:
>>>> authentication acct=root : exe="/bin/su" (hostname=?, addr=?,
>>>> terminal=pts/0 res=failed)'
>>>>
>>> ...
>>>
>>> Try booting that VM appending "enforcing=0" to the kernel command
>>> line. If
>>> that helps, then it really is an SELinux issue.
>>>
>>> FWIW, I'm "su -"ing to root on CentOS 5 with SELinux disabled. I may
>>> get
>>> around to enabling it someday, but not right now.
> Look in /etc/ssh/sshd_config for the line
> #PermitRootLogin yes
>
PermitRootLogin no does not prevent "su -" once logged in.
--
imalone
More information about the fedora-list
mailing list