Re: chroot()ing a user's login

To: Stuart Ballard <sballard@netreach.net>
Cc: debian-user@lists.debian.org
Subject: Re: chroot()ing a user's login
From: Jim Breton <nagilum@stargate.kersur.net>
Date: Mon, 13 Dec 1999 11:52:31 -0500 (EST)
Message-id: <[🔎] Pine.LNX.3.96.991213114507.15669D-100000@stargate.kersur.net>
In-reply-to: <[🔎] 38551A6B.A59A0BF4@netreach.net>

I would if they weren't all in the same dir....  Plus lots of other useful
things like chmod.

OTOH, anyone who did manage to hack an account with a restricted shell
wouldn't have any business running chmod, so I suppose you could get away
with just taking /bin out of his path.  But then I imagine you might run
into problems where the uid has to run shell scripts, then you're screwed
again.  :P hmmm.  I guess then you would have to put a copy of a shell
back in his path somewhere. 

At any rate I still haven't figured out why that account can't log in.
:-\

On Mon, 13 Dec 1999, Stuart Ballard wrote:

> But with a restricted shell you can't run anything that isn't in your
> path, so just take all shells out of the path and bam, you're restricted
> again! :)

Reply to:

Follow-Ups:
- Re: chroot()ing a user's login
  - From: Felipe Alvarez Harnecker <felipe@qlsoft.cl>

References:
- Re: chroot()ing a user's login
  - From: Stuart Ballard <sballard@netreach.net>

Prev by Date: Re: Openssh 1.2pre17-1 broken?
Next by Date: Re: ssh pam
Previous by thread: Re: chroot()ing a user's login
Next by thread: Re: chroot()ing a user's login
Index(es):
- Date
- Thread