Env: OpenSuSE 11.1
I want to restrict users who can su to root by using pam_wheel.so module.
So, I edited /etc/pam.d/su to following.
auth sufficient pam_rootok.so
auth required pam_wheel.so use_uid
auth include common-auth
account include common-account
password include common-password
session include common-session
session optional pam_xauth.so
But, a user who is not belong to wheel group still can su to root…