![]() ![]() Because su is invoked by root, it does not require you to enter the target user's password. The often-used sudo su combination works as follows: first sudo asks you for your password, and, if you're allowed to do so, invokes the next command ( su) as a super-user. user X is only able to run program Y etc. it's not possible to login as root directly.Īlso, /etc/sudoers allows to specify some additional options - i.e. This results in much cleaner management of privileges.Īs a result of this, in many Debian-based systems root user has no password set - i.e. ![]() To revoke admin privileges from a person, you just need to edit the config file (or remove the user from a group which is listed in that config). It uses a config file (/etc/sudoers) which lists which users have rights to specific actions (run commands as root, etc.) When invoked, it asks for the password of the user who started it - to ensure the person at the terminal is really the same "joe" who's listed in /etc/sudoers. what's the mnemonic? Super-User-DO?) is completely different. If you need to revoke admin permissions from one of the users, you need to change root password and tell it only to those people who need to keep access - messy. If there are several users on your machine who need to run commands as root, they all need to know root password - note that it'll be the same password. So, to become root, you need to know root password. ![]() To ensure you have the rights to do that, it asks you for the password of the target user. Su (which means "substitute user" or "switch user") - does exactly that, it starts another shell instance with privileges of the target user. The main difference between these commands is in the way they restrict access to their functions. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |