Chapter 4. Gaining Privileges
rootis potentially dangerous and can lead to widespread damage to the system and data. This chapter covers ways to gain administrative privileges using the
sudoprograms. These programs allow specific users to perform tasks which would normally be available only to the root user while maintaining a higher level of control and system security.
sucommand, they are prompted for the root password and, after authentication, are given a root shell prompt.
sucommand, the user is the root user and has absolute administrative access to the system. In addition, once a user has become root, it is possible for them to use the
sucommand to change to any other user on the system without being prompted for a password.
usermod -a -G wheelusername
- Click themenu on the Panel, point to and then click to display the User Manager. Alternatively, type the command
system-config-usersat a shell prompt.
- Click the Users tab, and select the required user in the list of users.
- Clickon the toolbar to display the User Properties dialog box (or choose on the menu).
- Click the Groups tab, select the check box for the wheel group, and then click .
wheelgroup, it is advisable to only allow these specific users to use the
sucommand. To do this, you will need to edit the PAM configuration file for
/etc/pam.d/su. Open this file in a text editor and remove the comment (#) from the following line:
#auth required pam_wheel.so use_uid
wheelcan switch to another user using the
rootuser is part of the
wheelgroup by default.