Difference between su -c and runuser -l -c

linux shell su user

I need to run some command lines as particular user in a shell script.

I've found (at least) two way:

su user -c 'command'

runuser -l user -c 'command'

Is there a significant difference between this two commands?


As already written in question comments, runuser is basically a su that doesn't use the PAM stack.

To provide a little more detail, as per blog post of Dan Walsh - one of runuser authors - it seems that runuser is actually compiled from su sources except with the PAM stack excluded from compilation. The difference is that using runuser instead of su can prevent some SELinux errors. That post also says this:

Whenever an service is running as root and wants to change UID using the shell it should use runuser.

When you are logged in to a shell as a user and want to become root, you should use su. (Or better yet sudo)

Related

Why mount a folder to a folder in fstab?
Which internal-sftp options are available?
How to access server running in VirtualBox from the host?
Is a found SD card safe to use after formatting it with a DSLR?
Windows 10 not finding exe files in search
Capture CLI Output as Animated GIF
Text smiley faces show up as the letter J in emails
How to make Ubuntu trust a new root certificate non-interactively?
How do I revoke chrome notification permissions?
Stop Windows 10 from automatically downloading (promoted) apps
VirtualBox causes host BSOD starting VM under Windows 10. Hyper-V is off
Is it possible to show the battery level of an RDP client inside the host?