Re: securing pop3

To: "\"Janus N.\" Tøndering" <janus@bananus.dk>
Cc: debian-security@lists.debian.org
Subject: Re: securing pop3
From: Glen Mehn <glen@burningman.com>
Date: Mon, 10 Feb 2003 17:08:58 -0800
Message-id: <[🔎] 3E484D2A.3060703@burningman.com>
In-reply-to: <[🔎] 1044923952.10760.1.camel@apple.bananus.dk>
References: <[🔎] 20030210215657.68115c3b.vincenzo@dagods.org> <[🔎] Pine.LNX.4.33.0302101623290.9508-100000@router.windsormachine.com> <[🔎] 20030210230825.63271818.vincenzo@dagods.org> <[🔎] 1044988254.3e49415e3d455@mail.canadacast.ca> <[🔎] 1044923952.10760.1.camel@apple.bananus.dk>

Janus N. Tøndering wrote:

On Tue, 2003-02-11 at 19:30, Ross Currie wrote:

quite right.
You'll want to put something like /bin/false in your passwd file as the user's
shell.



Both /bin/false and /bin/true has been suggested. Any difference in
using the two?

/bin/false returns false, while /bin/true returns true. If you want togenerate an error to the client, use /bin/false, but if you want 'exit0' behaviour, then use /bin/true.


I, personally, use /bin/false.

(you can also use /usr/bin/passwd, and an authenticated ssh session willprompt for the old password again, and then allow a user to change it)


which is nice.
-g

--
Glen Mehn	glen@burningman.com
"if you ever swallow the universe, remember to spit the dragon
	back out.xx.		--swan

Reply to:

References:
- Re: securing pop3
  - From: vincenzo <vincenzo@dagods.org>
- Re: securing pop3
  - From: Mike Dresser <mdresser_l@windsormachine.com>
- Re: securing pop3
  - From: vincenzo <vincenzo@dagods.org>
- Re: securing pop3
  - From: Ross Currie <ross@excess.org>
- Re: securing pop3
  - From: "Janus N." Tøndering <janus@bananus.dk>

Prev by Date: Re: securing pop3
Next by Date: Re: raw disk access
Previous by thread: Re: securing pop3
Next by thread: Re: securing pop3
Index(es):
- Date
- Thread