From b7092f0ddee284ecd1cb944018252b3fd401ec22 Mon Sep 17 00:00:00 2001 From: =?utf8?q?Arkadiusz=20Mi=C5=9Bkiewicz?= Date: Sun, 14 Oct 2012 10:43:35 +0200 Subject: [PATCH] - bring su related stuff from coreutils to here --- su-l.pamd | 6 ++++++ su-paths.patch | 18 ++++++++++++++++++ su.pamd | 9 +++++++++ 3 files changed, 33 insertions(+) create mode 100644 su-l.pamd create mode 100644 su-paths.patch create mode 100644 su.pamd diff --git a/su-l.pamd b/su-l.pamd new file mode 100644 index 0000000..656a139 --- /dev/null +++ b/su-l.pamd @@ -0,0 +1,6 @@ +#%PAM-1.0 +auth include su +account include su +password include su +session optional pam_keyinit.so force revoke +session include su diff --git a/su-paths.patch b/su-paths.patch new file mode 100644 index 0000000..bcf5b2d --- /dev/null +++ b/su-paths.patch @@ -0,0 +1,18 @@ +--- coreutils-4.5.3/login-utils/su.c.orig Sun Oct 27 21:57:03 2002 ++++ coreutils-4.5.3/login-utils/su.c Sun Oct 27 22:15:05 2002 +@@ -154,6 +154,15 @@ + # define DEFAULT_ROOT_LOGIN_PATH "/usr/ucb:/bin:/usr/bin:/etc" + #endif + ++/* The default paths which get set are both bogus and oddly influenced ++ by and -D on the commands line. Just to be clear, we'll set ++ these explicitly. -ewt */ ++#undef DEFAULT_LOGIN_PATH ++#undef DEFAULT_ROOT_LOGIN_PATH ++#define DEFAULT_LOGIN_PATH "/bin:/usr/bin:/usr/local/bin:/usr/X11R6/bin" ++#define DEFAULT_ROOT_LOGIN_PATH \ ++ "/bin:/sbin:/usr/bin:/usr/sbin:/usr/local/bin:/usr/local/sbin:/usr/X11R6/bin:/usr/X11R6/sbin" ++ + /* The shell to run if none is given in the user's passwd entry. */ + #define DEFAULT_SHELL "/bin/sh" + diff --git a/su.pamd b/su.pamd new file mode 100644 index 0000000..013bb59 --- /dev/null +++ b/su.pamd @@ -0,0 +1,9 @@ +#%PAM-1.0 +auth sufficient pam_rootok.so +auth required pam_wheel.so group=wheel use_uid +auth include system-auth +account sufficient pam_succeed_if.so uid = 0 use_uid quiet +account include system-auth +password include system-auth +session optional pam_xauth.so +session include system-auth -- 2.44.0