The article tells you to add users, who you want to be able to use su, to the wheel group, and editing the PAM config file at /etc/pam.d/su appropriately. However at least in Ubuntu I had to add these users to the root group instead, so the steps needed might vary between distros.
imthenachoman
commented
3 years ago
A bad-actor who has gained access to an account without
sudoprivileges can still try to login as such withsu.Here's an article about limiting who can use of
su: https://www.cyberciti.biz/tips/restrict-the-use-of-su-command.htmlThe article tells you to add users, who you want to be able to use
su, to thewheelgroup, and editing the PAM config file at/etc/pam.d/suappropriately. However at least in Ubuntu I had to add these users to therootgroup instead, so the steps needed might vary between distros.