From 65aa59dac9ab1ea0133e71b2b45cf6d29c2ec49d Mon Sep 17 00:00:00 2001
From: Eugeni Dodonov <eugeni@mandriva.org>
Date: Tue, 10 Feb 2009 12:46:04 +0000
Subject: Correctly handle wheel group authentication (#19091).

---
 src/msec/libmsec.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'src')

diff --git a/src/msec/libmsec.py b/src/msec/libmsec.py
index b32d5b4..ae04f74 100755
--- a/src/msec/libmsec.py
+++ b/src/msec/libmsec.py
@@ -1162,7 +1162,7 @@ class MSEC:
                 if su.exists():
                     (su.replace_line_matching('^[#\s]*auth\s+required\s+(?:/lib/security/)?pam_wheel.so\s+use_uid\s*$',
                                                           'auth       required     pam_wheel.so use_uid') or \
-                                 su.insert_after('^auth\s+required', 'auth       required     pam_wheel.so use_uid'))
+                                 su.insert_before('^auth\s+include', 'auth       required     pam_wheel.so use_uid'))
         else:
             if val:
                 self.log.info(_('Allowing su for all'))
-- 
cgit v1.2.1