SUPEOPLE(4-SysV) RISC/os Reference Manual SUPEOPLE(4-SysV)
NAME
su_people - special access database for su
SYNOPSIS
/etc/supeople
DESCRIPTION
When su(1M) is executed such that the user being subsituted
is root (userid 0), the file /etc/su_people is searched to
see if the user executing the command or the user logged in
originally (if these are different) is priveleged enough not
to have to give the password (this is called having free
access). This is done as a convenience, and should not be
taken lightly.
In order to stop any possible security hazards with this
feature, /etc/su_people must have mode 0600 (read and write
for owner only), owner 0 (root), and group 0 (root) or it
will be ignored. In addition, if any syntax errors are
found in the file, free access will be denied.
There are a number of different types of lines that can be
placed in this file:
#text Comment. This line is ignored.
username The named user is allowed free access.
username hostname_list
The named user is allowed free access on
the hosts named in hostname_list, which
is a list of hostnames separated by
spaces, tabs, and/or commas.
username !hostname_list
The named user is denied free access on
the hosts named in hostname_list, which
is a list of hostnames separated by
spaces, tabs, and/or commas.
SEE ALSO
su(1M)
Printed 1/15/91 Page 1