Re: [d-security] Re: /etc/passwd->shell

To: Hubert Chan <hackerhue@geek.com>
Cc: debian-security@lists.debian.org
Subject: Re: [d-security] Re: /etc/passwd->shell
From: Christian Hammers <ch@westend.com>
Date: Sat, 12 Jan 2002 04:40:48 +0100
Message-id: <[🔎] 20020112034048.GA20028@westend.com>
Mail-followup-to: Christian Hammers <ch@westend.com>, Hubert Chan <hackerhue@geek.com>, debian-security@lists.debian.org
In-reply-to: <[🔎] 87g05c5l4f.fsf@hackerhue.ddts.net>
References: <[🔎] 1010964533.3c421835c70b0@mail.franceonline.fr> <[🔎] 87g05c5l4f.fsf@hackerhue.ddts.net>

On Fri, Jan 11, 2002 at 10:00:32PM -0500, Hubert Chan wrote:
> So daemon, bin, sys, ftp, www-data, mail, mysql, etc. can probably be
> set to /bin/false.  (Why does Debian not do this by default?)
Apart from the ftp users which (sometimes) need their ftp password to
be stored in /etc/shadow and thus would making it a valid login password
to, I can see no reason why not giving a user, that has *no* password,
a shell. 
Without a password in /etc/shadow or /etc/passwd he could not login and
if someone cracks the server with i.e. a buffer overflow he does not
depend on the passwd entries but executes /bin/bash directly.
On the other hand when executing "su -c daemonxy cronscriptxy" from 
your crontab or similar than you need a valid shell because the shell
relies on it when executing child programs.

BTW: for ftp and pop3 users I could imagine /bin/passwd beeing a nice shell
     because it would allow the users to change their password via ssh. 

bye,

 -christian-

Reply to:

Follow-Ups:
- Re: [d-security] Re: /etc/passwd->shell
  - From: "\"Ivan R.\"" <ivan.rambeau@franceonline.fr>

References:
- /etc/passwd->shell
  - From: "\"Ivan R.\"" <ivan.rambeau@franceonline.fr>
- Re: /etc/passwd->shell
  - From: Hubert Chan <hackerhue@geek.com>

Prev by Date: Re: /etc/passwd->shell
Next by Date: Re: Socks & Squid?
Previous by thread: Re: /etc/passwd->shell
Next by thread: Re: [d-security] Re: /etc/passwd->shell
Index(es):
- Date
- Thread