/etc/passwd->shell

To: debian-security@lists.debian.org
Subject: /etc/passwd->shell
From: "\"Ivan R.\"" <ivan.rambeau@franceonline.fr>
Date: Sun, 13 Jan 2002 18:28:53 -0500 (EST)
Message-id: <[🔎] 1010964533.3c421835c70b0@mail.franceonline.fr>

hi all!

i want a password file
without hole.

so i have now in /etc/passwd:

root with /bin/bash
daemon, bin and sys with /bin/sh
sync with /bin/sync
normal users with /bin/bash
ftp users with /bin/noshell

here i think that s good

but i have some questions :

what about replace /bin/sh for man by /bin/false?
i tried and to see man pages that s ok.
is there a reason to let /bin/sh?

why mail and www-data has got /bin/sh
and not mysql (/bin/false)?
why no shell for mysqld and shell
for the others?
what should i do here?

thanks in advance for all

;D

-----
Ivan R.
sysadmin

Reply to:

Follow-Ups:
- Re: /etc/passwd->shell
  - From: Hubert Chan <hackerhue@geek.com>

Prev by Date: Socks & Squid?
Next by Date: Re: I've been hacked by DevilSoul
Previous by thread: Re: Socks & Squid?
Next by thread: Re: /etc/passwd->shell
Index(es):
- Date
- Thread