On Thu, Jun 24, 2004 at 11:12:30AM +1000, Luke Mewburn wrote:
>
>There will be security concerns in the future if we provided a
>statically linked (and possibly less functional) /rescue/su once
>/usr/bin/su supports dynamically linked PAM modules, since users
>could avoid the PAM policies for /usr/bin/su by running /rescue/su.

not to mention the fact that su is suid root and the rest of /rescue
isn't.

-- 
|-----< "CODE WARRIOR" >-----|
codewarrior@daemon.org             * "ah!  i see you have the internet
twofsonet@graffiti.com (Andrew Brown)                that goes *ping*!"
werdna@squooshy.com       * "information is power -- share the wealth."