[32621] in Kerberos
Re: Query regarding ksu.
daemon@ATHENA.MIT.EDU (Sam Hartman)
Wed Sep 1 15:24:06 2010
From: Sam Hartman <hartmans@mit.edu>
To: Russ Allbery <rra@stanford.edu>
Date: Wed, 01 Sep 2010 15:24:00 -0400
In-Reply-To: <87vd6pwchq.fsf@windlord.stanford.edu> (Russ Allbery's message of
"Wed, 01 Sep 2010 11:21:53 -0700")
Message-ID: <tslk4n5jmi7.fsf@live.mit.edu>
MIME-Version: 1.0
Cc: krbdev@mit.edu, kerberos@mit.edu
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Errors-To: kerberos-bounces@mit.edu
>>>>> "Russ" == Russ Allbery <rra@stanford.edu> writes:
Russ> Presumably if you ksu'd without a password or a ticket to
Russ> another user, you wouldn't get Kerberos tickets for that user
Russ> and it would just be acting like su. Yes, root has no special
Russ> ability to get tickets for another user without knowing that
Russ> user's credentials.
If I ksu to a user whitout ticket I expect ksu to ask for the password
for which -n is supplied and/or the default that is inferred if -n is
not available.
--Sam
________________________________________________
Kerberos mailing list Kerberos@mit.edu
https://mailman.mit.edu/mailman/listinfo/kerberos
