Date: Sat, 13 Apr 2002 03:45:35 -0700 From: Terry Lambert <tlambert2@mindspring.com> To: Rasmus Skaarup <mfbsd@skaarup.org> Cc: freebsd-current@freebsd.org Subject: Re: pam_unix.so error and lock order reversal Message-ID: <3CB80C4F.B37B1C37@mindspring.com> References: <20020413122015.L15130-100000@skaarup.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Rasmus Skaarup wrote: > 2) When logged in as root, and su'd to a non-root user, I cannot ssh to a > 4.5-STABLE machine.. It just hangs. But when logged in as non-root, it > works fine. Is this somekind of security feature? :-) Pretty much. The user it attempts to log you in as is still "root", because that's still your identity, even if it's not your current credential. But your current credential does not have access to the files for the remote system which are necessary for your identity (~root/.ssh). Ideally, identity would be handled by a "session manager", which was created at login time, which would maintain its priviledges to these resources. You might want to try using "su -" instead of "su", in order to actually *become* the other person. -- Terry To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3CB80C4F.B37B1C37>