Primary group wheel -> su is possible

Mastakilla

Patron
Joined
Jul 18, 2019
Messages
202
The doco says
Primary Groupdrop-down menuUnset New Primary Group to access this menu. For security reasons, FreeBSD will not give a user su permissions if wheel is their primary group. To give a user su access, add them to the wheel group in Auxiliary groups.
https://www.ixsystems.com/documentation/freenas/11.3-U1/accounts.html#groups

However:

Code:
freenas% id
uid=1000(test) gid=0(wheel) groups=0(wheel)
freenas% su -
Password:

Warning: settings changed through the CLI are not written to
the configuration database and will be reset on reboot.

root@freenas[~]#                      

Am I missing something?
 

Mastakilla

Patron
Joined
Jul 18, 2019
Messages
202
As I'm not getting any response saying that I simply misunderstand it, I'll try reporting it as a bug...
 

sretalla

Powered by Neutrality
Moderator
Joined
Jan 1, 2016
Messages
9,702
What are you expecting to see?

After you type su and the password (I presume successfully), you are landed at a root user prompt.
 

Mastakilla

Patron
Joined
Jul 18, 2019
Messages
202
What are you expecting to see?

After you type su and the password (I presume successfully), you are landed at a root user prompt.
The doco says "For security reasons, FreeBSD will not give a user su permissions if wheel is their primary group. ", but it actually does... I'm expecting the doco to be in line with how it works...
 

sretalla

Powered by Neutrality
Moderator
Joined
Jan 1, 2016
Messages
9,702
OK, missed the "not". Makes sense now. Report the bug.
 

Mastakilla

Patron
Joined
Jul 18, 2019
Messages
202
Top