Re: Login shell (was: Small Bug)

To: Gregory Ade <gkade@bigbrother.net>
Cc: Norbert Nemec <nobbi@cheerful.com>, debian-hurd@lists.debian.org
Subject: Re: Login shell (was: Small Bug)
From: nisse@lysator.liu.se (Niels Möller)
Date: 18 Mar 2000 16:51:35 +0100
Message-id: <[🔎] nnitykl1iw.fsf@sture.lysator.liu.se>
In-reply-to: Gregory Ade's message of "Fri, 17 Mar 2000 10:34:56 -0800 (PST)"
References: <[🔎] Pine.LNX.4.10.10003170908590.20194-100000@kanga.azure-n-jade.vpn.tadma.net>

Gregory Ade <gkade@bigbrother.net> writes:

> Now, what I want to know, is can you deny, say, read and execute access to
> /etc for the not-logged-in user, and still have someone able to log in
> from the login shell?

I think you can do that. Obviously, the login program would have to be
setuid root. (I think a setuid login program is common on Unix.
Although it is not really necessary, if you only start login from init
or telnetd or some other daemon that is already running as root).

/Niels

Reply to:

References:
- Re: Login shell (was: Small Bug)
  - From: Gregory Ade <gkade@bigbrother.net>

Prev by Date: Re: "Small" Bug - silly question again
Next by Date: Re: "Small" Bug - silly question again
Previous by thread: Re: Login shell (was: Small Bug)
Next by thread: Re: Login shell (was: Small Bug)
Index(es):
- Date
- Thread