On Sun, Dec 01, 2002 at 09:28:34AM +1100, Herbert Xu wrote: > H. S. Teoh <hsteoh@quickfur.yi.org> wrote: > > > > I've just verified that XDM still exhibits this bug, contrary to what > > Steve Durham said about PAM fixing it. I added /bin/true to /etc/shells, > > and changed a user's shell to /bin/true. XDM still logged me in. > > IMHO this bug is bogus. Raul's suggestion does not work, there is no > generic way to execute a command given an arbitrary shell. > > What Steven Durham may have meant is that after switching to PAM, the > people who want to allow only FTP access can use something other than > /bin/true to do so, e.g., a simple list through pam_listfile. Okay, I need an explicit recommendation for a course of action on this issue. Does that mean "ignore Mr. Teoh"? :) -- G. Branden Robinson | Debian GNU/Linux | De minimis non curat lex. branden@debian.org | http://people.debian.org/~branden/ |
Attachment:
pgpneyvTDH9px.pgp
Description: PGP signature