Re: noboby with a shell !!

To: Yoann <debian-yoann@ifrance.com>
Cc: debian-security@lists.debian.org
Subject: Re: noboby with a shell !!
From: robjeh@wanadoo.nl
Date: Wed, 26 Mar 2003 12:47:43 +0100
Message-id: <[🔎] 1048679263.3e81935fa4864@webmail3.wanadoo.nl>
In-reply-to: <[🔎] 3E81827A.4000709@ifrance.com>
References: <[🔎] 3E81827A.4000709@ifrance.com>

Does the user nobody has got a password in /etc/shadow ?

greets
  Robbert

Citeren Yoann <debian-yoann@ifrance.com>:

> hi,
> 
> I look at in the file /etc/passwd on my server today, and I saw the user 
> nobody has a shell !!. When I installed my debian (sarge, I know it's 
> bad, but it's just a server for me...) I put /bin/false. A few days ago, 
> while an upgrade, apt asked to me to upgrade that file to the new 
> version and answer yes, so I think it come from that action, but it 
> could be unsecure to put /bin/sh for nobody ?
> 
> nobody:x:65534:65534:nobody:/nonexistent:/bin/sh
>                                           ^^^^^^^^
> I change to :
> 
> nobody:x:65534:65534:nobody:/dev/null:/bin/false
> 
> Yoann
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact
> listmaster@lists.debian.org
> 
> 
> 





__________________________________________________________


http://www.wanadoo.nl/

Reply to:

References:
- noboby with a shell !!
  - From: Yoann <debian-yoann@ifrance.com>

Prev by Date: Re: noboby with a shell !!
Next by Date: Re: noboby with a shell !!
Previous by thread: Re: noboby with a shell !!
Next by thread: bind squid to interface
Index(es):
- Date
- Thread