Re: System users and valid shells...

To: debian-devel@lists.debian.org
Subject: Re: System users and valid shells...
From: Thiemo Seufer <ths@networkno.de>
Date: Mon, 8 May 2006 10:00:42 +0100
Message-id: <[🔎] 20060508090042.GA31648@networkno.de>
In-reply-to: <[🔎] E1FcznH-0001R3-48@scyw00225.scy001.de>
References: <[🔎] 20060503004556.GA28648@aragorn> <[🔎] 20060503010259.GH12999@riva.ucam.org> <[🔎] Pine.LNX.4.64.0605021837210.2398@hygvzn-guhyr.pnirva.bet> <[🔎] ac9w7uvg.fsf@cante.net> <[🔎] E1FcznH-0001R3-48@scyw00225.scy001.de>

Marc Haber wrote:
> On Fri, 05 May 2006 11:12:35 +0300, Jari Aalto <jari.aalto@cante.net>
> wrote:
> >Richard A Nelson <cowboy@debian.org> writes:
> >> On Wed, 3 May 2006, Colin Watson wrote:
> >> The rest of the system accounts are happily running with /bin/false
> >
> >There is now /bin/nologin which is more secure
> 
> You can surely explain why /bin/nologin is more secure than
> /bin/false. I'm eager to learn.

I am curious why any of both would be more secure than /dev/null, a
place which makes it hard to smuggle an infected binary into.


Thiemo

Reply to:

Follow-Ups:
- Re: System users and valid shells...
  - From: Gabor Gombas <gombasg@sztaki.hu>

References:
- System users and valid shells...
  - From: Uwe Hermann <uwe@hermann-uwe.de>
- Re: System users and valid shells...
  - From: Colin Watson <cjwatson@debian.org>
- Re: System users and valid shells...
  - From: Richard A Nelson <cowboy@debian.org>
- Re: System users and valid shells...
  - From: Jari Aalto <jari.aalto@cante.net>
- Re: System users and valid shells...
  - From: Marc Haber <mh+debian-devel@zugschlus.de>

Prev by Date: Re: Bug#366359: ITP: libnet-smtpauth-perl -- Simple Mail Transfer Protocol client with AUTHentication
Next by Date: RE:read it immediately
Previous by thread: Re: System users and valid shells...
Next by thread: Re: System users and valid shells...
Index(es):
- Date
- Thread