Qubes/core-agent-linux
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
da2fa46551
core-agent-linux/passwordless-root/debian/pam-configs_su.qubes
Paweł Marczewski da2fa46551
Use pam-configs to override Debian PAM config 
Instead of the old workaround that replaces the whole PAM config,
use Debian's framework (pam-configs) to add a rule for su. Enable it
for users in qubes group only.

PAM Config framework documentation:
  https://wiki.ubuntu.com/PAMConfigFrameworkSpec

Issue:
  QubesOS/qubes-issues#5799

Original PR this change is based on:
  QubesOS/qubes-core-agent-linux#171
2020-05-07 15:31:47 +02:00

7 lines
208 B
Plaintext
Raw Blame History

Name: allow su without password (by package qubes-core-agent-passwordless-root)
Default: yes
Priority: 258
Auth-Type: Primary
Auth:
sufficient pam_succeed_if.so use_uid user ingroup qubes service in su:su-l
Reference in New Issue View Git Blame Copy Permalink