[sudo-users] Granting users the ability to su to another user via sudo
jxadams at ualr.edu
Wed Sep 22 11:39:27 EDT 2010
I've been asked to allow su'ing to another user without the original user having the password of the account to which they're su'ing. The obvious way to do this is by using sudo and putting an entry like this into the sudoers file:
%group ALL=(root) su - user
It seems so simple and obvious that is raises this question: How bad an idea is this?
More information about the sudo-users