Bug#419132: ssh: /usr/sbin/nologin used for shell, not present in /etc/shells

To: Brian Clark <bjclark@helios.unwell.org>
Cc: 419132@bugs.debian.org
Subject: Bug#419132: ssh: /usr/sbin/nologin used for shell, not present in /etc/shells
From: Russ Allbery <rra@debian.org>
Date: Fri, 13 Apr 2007 15:55:14 -0700
Message-id: <[🔎] 87k5wfga0d.fsf@windlord.stanford.edu>
Reply-to: Russ Allbery <rra@debian.org>, 419132@bugs.debian.org
In-reply-to: <[🔎] 20070413202006.16423.42132.reportbug@helios.unwell.org> (Brian Clark's message of "Fri, 13 Apr 2007 16:20:06 -0400")
References: <[🔎] 20070413202006.16423.42132.reportbug@helios.unwell.org>

Brian Clark <bjclark@helios.unwell.org> writes:

> Package: ssh
> Version: 1:4.3p2-9
> Severity: minor

> The openssh install process should detect whether /usr/sbin/nologin
> isn't present in /etc/shells, and it should add it if necessary if ssh
> is going to use /usr/sbin/nologin as its shell.

Wouldn't that be exactly the wrong thing to do given the purpose of
/etc/shells?

       Be aware that there are programs which consult this file to find
       out if a user is a normal user.  E.g.:  ftp daemons traditionally
       disallow access to users with shells not included in this file.

That's exactly the behavior we want.

-- 
Russ Allbery (rra@debian.org)               <http://www.eyrie.org/~eagle/>

Reply to:

Follow-Ups:
- Bug#419132: ssh: /usr/sbin/nologin used for shell, not present in /etc/shells
  - From: Brian Clark <brian+nevdull@unwell.org>

References:
- Bug#419132: ssh: /usr/sbin/nologin used for shell, not present in /etc/shells
  - From: Brian Clark <bjclark@helios.unwell.org>

Prev by Date: Bug#419132: ssh: /usr/sbin/nologin used for shell, not present in /etc/shells
Next by Date: Bug#419132: ssh: /usr/sbin/nologin used for shell, not present in /etc/shells
Previous by thread: Bug#419132: ssh: /usr/sbin/nologin used for shell, not present in /etc/shells
Next by thread: Bug#419132: ssh: /usr/sbin/nologin used for shell, not present in /etc/shells
Index(es):
- Date
- Thread