In message <423F88D5.9020700@rambler.ru>, sigsegv@rambler.ru writes:
>I've just installed base system from netbsd-3 tree and noticed users 
>belonging to group 'wheel' can gain root access by running 'su', without 
>password prompt.
>Is this intentional?
>
I can't reproduce that.  I just upgraded to 3.99.1 from Saturday, 
leaving all of the PAM stuff as defaults, and I see a password prompt 
when I type 'su'.


		--Prof. Steven M. Bellovin, http://www.cs.columbia.edu/~smb