The user would not have administrative privledges with my suggestion, only the login processor would, and the login processor could allow the login script(not the user) to run certain commands as administrator instead of running them as the user. SU is a huge security risk, by doing that you are giving the user administrative rights, they can simply look at the script and get the administrator pass, duh.
_________________________
Brian Parris
Manager, Ameritech Reliability Center
PC LAN Administration & User Support
Email: bp3959@sbc.com
Office: (312) 424-2084
Pager: (312) 514-2921
