1SU(1)                     BSD General Commands Manual                    SU(1)
2

NAME

4     su — substitute user identity
5

SYNOPSIS

7     su [-K | --no-kerberos] [-f] [-l | --full] [-m] [-i instance |
8        --instance=instance] [-c command | --command=command] [login [shell
9        arguments]]
10

DESCRIPTION

12     su will use Kerberos authentication provided that an instance for the
13     user wanting to change effective UID is present in a file named .k5login
14     in the target user id's home directory
15
16     A special case exists where ‘root's’ ~/.k5login needs to contain an entry
17     for: ‘user/⟨instance⟩@REALM’ for su to succed (where ⟨instance⟩ is ‘root’
18     unless changed with -i).
19
20     In the absence of either an entry for current user in said file or other
21     problems like missing ‘host/hostname@REALM’ keys in the system's keytab,
22     or user typing the wrong password, su will fall back to traditional
23     /etc/passwd authentication.
24
25     When using /etc/passwd authentication, su allows ‘root’ access only to
26     members of the group ‘wheel’, or to any user (with knowledge of the
27     ‘root’ password) if that group does not exist, or has no members.
28
29     The options are as follows:
30
31     -K, --no-kerberos don't use Kerberos.
32
33     -f don't read .cshrc.
34
35     -l, --full simulate full login.
36
37     -m leave environment unmodified.
38
39     -i instance, --instance=instance root instance to use.
40
41     -c command, --command=command command to execute.
42
43HEIMDAL                        January 12, 2006                        HEIMDAL
Impressum