Bug#419132: ssh: /usr/sbin/nologin used for shell, not present in /etc/shells
Brian Clark <bjclark@helios.unwell.org> writes:
> Package: ssh
> Version: 1:4.3p2-9
> Severity: minor
> The openssh install process should detect whether /usr/sbin/nologin
> isn't present in /etc/shells, and it should add it if necessary if ssh
> is going to use /usr/sbin/nologin as its shell.
Wouldn't that be exactly the wrong thing to do given the purpose of
/etc/shells?
Be aware that there are programs which consult this file to find
out if a user is a normal user. E.g.: ftp daemons traditionally
disallow access to users with shells not included in this file.
That's exactly the behavior we want.
--
Russ Allbery (rra@debian.org) <http://www.eyrie.org/~eagle/>
Reply to: