Background: We need to restrict usage of su to certain users, which is
impossible if “su -” is not affected by above entry in /etc/pam.d/su.
Upgrading to a newer kernel is not possible at the moment because there
are issues with the current kernel and certain 10G NICs.
I tested the same configuration on a Fedora 15 (184.108.40.206-0 x86_64)
where it worked as expected.
Any hints or workarounds are appreciated.