cannot set groups - Error

[Kurian Thayil]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Hi Aaron,

My apologies for the very late reply. Your suggestion worked. It worked
when suid bit was set for su. Thanks for all your help and quick response.

Regards,

Kurian Mathew Thayil.

Aaron Bliss wrote:
> Kurian,
> Is the suid bit set on the su binary?
> 
> Aaron
> 
> -----Original Message-----
> From: redhat-list-bounces at redhat.com [mailto:redhat-list-bounces at redhat.com]
> On Behalf Of Kurian Thayil
> Sent: Saturday, January 10, 2009 12:35 AM
> To: redhat-list at redhat.com
> Subject: cannot set groups - Error
> 
> Hi All,
> 
> One of the RHEL 5.1 servers that I have installed is giving me the error
> *"su:
> cannot set groups: Operation not permitted"* whenever I try doing *su -* as
> an ordinary user. /etc/passwd and /etc/group is world readable and owner and
> group is root.
> 
> *[kurian at rhel-test ~]$ ls -l /etc/passwd;ls -l /etc/group
> -rw-r--r-- 1 root root 1656 Jan  9 21:06 /etc/passwd
> -rw-r--r-- 1 root root 646 Jan  9 21:06 /etc/group*
> 
> The following is the log message in /var/log/secure whenever I do this
> operation.
> 
> *Jan 10 16:31:15 rhel-test su: pam_keyinit(su-l:session): Unable to change
> GID to 0 temporarily
> Jan 10 16:31:15 rhel-test su: pam_keyinit(su-l:session): Unable to change
> GID to 0 temporarily
> Jan 10 16:31:15 rhel-test su: pam_unix(su-l:session): session opened for
> user root by kurian(uid=500)
> Jan 10 16:31:15 rhel-test su: pam_unix(su-l:session): session closed for
> user root*
> 
> I am able to login to the server directly as root. Do suggest some tips to
> resolve this issue. Thanks in advance.
> 
> Regards,
> 
> Kurian Mathew Thayil.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.6 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org

iD8DBQFJaoAulAZU425rdoERArKVAKC1R8s4G7Aumk7mWoW0hDPQawvfVQCeK76H
uUmtSSyjICZ6P7HfbLgiZBc=
=Yktm
-----END PGP SIGNATURE-----