usermode doesn't set ruser, preventing configs like: [kaboom@verdande txts]$ cat /etc/security/console.apps/redhat-config-users USER=root PROGRAM=/usr/share/redhat-config-users/redhat-config-users SESSION=true [kaboom@verdande txts]$ [kaboom@verdande txts]$ cat /etc/pam.d/redhat-config-users #%PAM-1.0 auth sufficient /lib/security/pam_rootok.so auth sufficient /lib/security/pam_timestamp.so auth sufficient /lib/security/pam_listfile.so item=ruser sense=allow file=/etc/security/listfiles/r-c-users onerr=fail auth required /lib/security/pam_stack.so service=system-auth session required /lib/security/pam_permit.so session optional /lib/security/pam_xauth.so session optional /lib/security/pam_timestamp.so account required /lib/security/pam_permit.so [kaboom@verdande txts]$ [kaboom@verdande txts]$ cat /etc/security/listfiles/r-c-users kaboom [kaboom@verdande txts]$ from giving the desired result (letting users listed in r-c-users run program w/o password, but requiring all unlisted users to enter the root password)
See also Bug 86188 -- a request for a different implementation of the same functionality
Hi Chris, I decided to apply patches that Mathew presented in Bug 86188. Thank you for the report! cheers, Jindrich *** This bug has been marked as a duplicate of 86188 ***
Changed to 'CLOSED' state since 'RESOLVED' has been deprecated.