Su (unix)

Information about Su (unix)

The Unix su (substitute user or switch user or super user) command is used to assume the login shell of another user without logging out. It is commonly used to change to root user permissions for administrative work without logging off and back on. Desktop environments such as KDE and GNOME have programs that pop up a password query box before allowing a user to run commands that would typically require such access.

su is commonly run from the command line terminal. When run, su asks for the target user's password, and, if accepted, grants the user access to that account.

>
johndoe@klinger:~$ su
Password:
root@klinger# exit
exit
johndoe@klinger:~$

A related command called sudo executes a command as another user but observes a set of constraints about which users can execute which commands as which other users (generally in a configuration file named /etc/sudoers). Unlike su, sudo authenticates users against their own password rather than that of the target user (to allow the delegation of specific commands to specific users on specific hosts without sharing passwords among them and while mitigating the risk of any unattended terminals).

Great care must be taken by a system administrator to choose a suitable password for the root account, to prevent any possible takeover by a low level user running su. Some Unix-like systems have a wheel group of users, and only allow these users to su to root. This may or may not mitigate these security concerns, since an intruder might first simply break into one of those accounts. GNU su, however, does not support a wheel group; this was done for philosophical reasons. [1]

Windows XP has a similar command called runas.

External links

[ su]
The su Command - by The Linux Information Project (LINFO)

• • [ e] Unix command line programs and builtins (more)
File and file system management	cat chattr cd chmod chown chgrp cksum cmp cp du df file fsck fuser ln ls lsof mkdir mount mv pwd rm rmdir split touch
Process management	at chroot crontab exit kill killall nice pgrep pidof pkill ps sleep time top wait watch
User Management/Environment	env finger id logname mesg passwd su sudo uname uptime w wall who whoami write
Text processing	awk comm cut ed ex fmt head iconv join less more paste sed sort tac tail tr uniq wc xargs
Shell programming	basename echo expr false printf test true unset
Printing: lp Communications: inetd netstat ping rlogin nc traceroute Searching: find grep strings Miscellaneous: banner bc cal dd man size yes

On many computer operating systems, superuser, or root, is the term used for the special user account that is controlled by the system administrator.

Many older operating systems on computers intended for personal and home use, including MS-DOS and Windows 9x, are not
..... Click the link for more information.

Maintainer: The KDE Team

OS: Cross-platform
Available language(s): Multilingual (80 different languages.)
Use: Desktop environment
License: GNU General Public License and others
Website: [1] KDE (
..... Click the link for more information.

gnome is a mythical creature characterized by its extremely small size and subterranean free lifestyle.

The word gnome is derived from the New Latin gnomus.
..... Click the link for more information.

command line interface or CLI is a method of interacting with an operating system or software using a command line interpreter. This command line interpreter may be a text terminal, terminal emulator, or remote shell client such as PuTTY.
..... Click the link for more information.

A computer terminal is an electronic or electromechanical hardware device that is used for entering data into, and displaying data from, a computer or a computing system. A computer terminal is an instance of a human-machine interface(HMI).
..... Click the link for more information.

A password is a form of secret authentication data that is used to control access to a resource. The password is kept secret from those not allowed access, and those wishing to gain access are tested on whether or not they know the password and are granted or denied access
..... Click the link for more information.

sudo command is used to run commands with the root user's privileges. This is done by entering sudo at the beginning of each line of commands. Alternatively, one may become root (system administrator) by logging in as "root" or by using the su command.
..... Click the link for more information.

A system administrator, systems administrator, or sysadmin, is a person employed to maintain, and operate a computer system or network. System administrators may be members of an information technology department.
..... Click the link for more information.

GNU (pronounced (help info ) ) is a computer operating system composed entirely of free software.
..... Click the link for more information.

Unix security, maintaining a secure environment on Unix and Unix-like operating systems is dependent on design concepts of these operating systems, but vigilance through user and administrative techniques is important to maintain security also.
..... Click the link for more information.

wheel war is a contest between privileged users on a shared, on-line computer system, in which each user discovers or invents ways to interfere with others' use of the system.
..... Click the link for more information.

Printing: lp Communications: inetd netstat ping rlogin nc traceroute Searching: find grep strings Miscellaneous: banner bc cal dd man size yes
..... Click the link for more information.

su is a command line tool for Unix. It allows users to switch the terminal to a different account by entering the username and password of that account. If no user name is given, the operating system's superuser account (known as "root") is used, thus providing a fast method to
..... Click the link for more information.

Unix (officially trademarked as UNIXÂ®) is a computer operating system originally developed in 1969 by a group of AT&T employees at Bell Labs including Ken Thompson, Dennis Ritchie and Douglas McIlroy.
..... Click the link for more information.

The cat command is a standard Unix program used to concatenate and display files. The name is from , a synonym of concatenate.

Specification

The Single Unix Specification specifies the behavior that each of the files given in sequence as arguments will write their
..... Click the link for more information.

chattr is a UNIX program that allows a user to set certain attributes to a file. Mostly chattr is used to make files immutable so that password files and certain system files cannot be erased during software upgrades.
..... Click the link for more information.

cd, sometimes also available as chdir (change directory), is a command line command to change the current working directory in operating systems such as Unix, Windows and DOS.
..... Click the link for more information.

The chmod command (abbreviated from change mode) is a shell command in Unix and Unix-like environments.

When executed, the command can change file system modes of files and directories. The modes include permissions and special modes.
..... Click the link for more information.

The chown command is used on Unix-like systems to change the owner of a file. In most implementations, it can only be executed by the Superuser. Unprivileged (regular) users who wish to change the group of a file that they own may use chgrp.
..... Click the link for more information.

The chgrp command is used by unprivileged users on Unix-like systems to change the group associated with a file. Unlike the chown command, chgrp allows regular users to change groups, but only to one of which they are a member.
..... Click the link for more information.

cksum is a POSIX command that reads the files specified by the File parameter and calculates a checksum, cyclic redundancy check (CRC) and the byte count for a file or files. If no files are specified, the cksum command reads standard input.
..... Click the link for more information.

cmp is a command line utility for computer systems that use a Unix operating system. It compares two files of any type and writes the results to the standard output. By default, cmp is silent if the files are the same; if they differ, the byte and line number at which the first
..... Click the link for more information.

The introduction to this article provides insufficient context for those unfamiliar with the subject matter.
Please help [ improve the introduction] to meet Wikipedia's layout standards.

..... Click the link for more information.

du (abbreviated from disk usage) is a standard Unix program used to estimate the file space usage; space used under a particular directory or files on a file system.

History

The du utility first appeared in version 1 of AT&T UNIX.
..... Click the link for more information.

df (abbreviated from disk free) is a standard Unix computer program used to display the amount of available disk space for filesystems on which the invoking user has appropriate read access, df
..... Click the link for more information.

This article is copied from an article on Wikipedia.org - the free encyclopedia created and edited by online user community. The text was not checked or edited by anyone on our staff. Although the vast majority of the wikipedia encyclopedia articles provide accurate and timely information please do not assume the accuracy of any particular article. This article is distributed under the terms of GNU Free Documentation License.

Herod_Archelaus

iPedia Free Information Center