merge upstream version 1.0.1

author: Steve Langasek <steve.langasek@ubuntu.com> 2019-01-03 17:05:01 -0800
committer: Steve Langasek <steve.langasek@ubuntu.com> 2019-01-03 17:27:13 -0800
commit: 419bd504587ec2bfc9085fe56e7a53433fd1eae6 (patch)
tree: d516c2ccae28dbd020cb69f50162f5d32acd7648 /modules/pam_rootok/README
parent: c68dce23face9f26b651917b418c7f80931fa7b7 (diff)
parent: 9c52e721044e7501c3d4567b36d222dc7326224a (diff)
1 files changed, 33 insertions, 0 deletions
diff --git a/modules/pam_rootok/README b/modules/pam_rootok/README
new file mode 100644
index 00000000..55a44756
--- /dev/null
+++ b/modules/pam_rootok/README
@@ -0,0 +1,33 @@
+pam_rootok — Gain only root access
+
+━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━━
+
+DESCRIPTION
+
+pam_rootok is a PAM module that authenticates the user if their UID is 0.
+Applications that are created setuid-root generally retain the UID of the user
+but run with the authority of an enhanced effective-UID. It is the real UID
+that is checked.
+
+OPTIONS
+
+debug
+
+    Print debug information.
+
+EXAMPLES
+
+In the case of the su(1) application the historical usage is to permit the
+superuser to adopt the identity of a lesser user without the use of a password.
+To obtain this behavior with PAM the following pair of lines are needed for the
+corresponding entry in the /etc/pam.d/su configuration file:
+
+# su authentication. Root is granted access by default.
+auth  sufficient   pam_rootok.so
+auth  required     pam_unix.so
+
+
+AUTHOR
+
+pam_rootok was written by Andrew G. Morgan, <morgan@kernel.org>.
+
author	Steve Langasek <steve.langasek@ubuntu.com>	2019-01-03 17:05:01 -0800
committer	Steve Langasek <steve.langasek@ubuntu.com>	2019-01-03 17:27:13 -0800
commit	419bd504587ec2bfc9085fe56e7a53433fd1eae6 (patch)
tree	d516c2ccae28dbd020cb69f50162f5d32acd7648 /modules/pam_rootok/README
parent	c68dce23face9f26b651917b418c7f80931fa7b7 (diff)
parent	9c52e721044e7501c3d4567b36d222dc7326224a (diff)