Re: security questions

To: Peter Jay Salzman <p@belial.ucdavis.edu>
Cc: debian-user@lists.debian.org
Subject: Re: security questions
From: Robert Waldner <Waldner@KPNQwest.at>
Date: Sat, 28 Oct 2000 20:36:47 +0200
Message-id: <200010281836.UAA04531@cruncher.Austria.EU.net>
In-reply-to: Your message of "Sat, 28 Oct 2000 10:06:56 PDT." <Pine.LNX.4.21.0010281000440.17174-100000@belial.ucdavis.edu>

On Sat, 28 Oct 2000 10:06:56 PDT, Peter Jay Salzman writes:
>also, i noticed that some accounts which are disabled are given a shell of
>/bin/false:
>
>	ftp:x:100:65534::/home/ftp:/bin/false
>
>tiger seemed to hate this too.  i tried playing around with /bin/false.
>can't seem to figure out what it is.  whatever it is, it's tiny.  only 4 kb
>long.

there are /bin/true (which gives a return code of 0 when run) and /bin/
 false (which returns 1) (both values IIRC). very handy if you want to 
 do something like `if (<bla> || /bin/true)` for some reason.
giving a shell with /bin/false effectively disables the account´s
 possibility to get a login shell, but (as in case with ftp) shouldn´t
 hinder other services (eg ftp, pop3, .forward etc.).

all of the above is in theory, because I tried that some time 
 ago but couldn´t get an ftp-login when the shell was /bin/false, but I 
 remember reading about it somewhere...

&rw
-- 
/  Ing. Robert Waldner  | Network Engineer | T: +43 1 89933  F: x533 \ 
\ <Waldner@KPNQwest.at> |    KPNQwest/AT   | Diefenbachg. 35, A-1150 /

Reply to:

Follow-Ups:
- Re: security questions
  - From: brian moore <bem@cmc.net>

References:
- security questions
  - From: Peter Jay Salzman <p@belial.ucdavis.edu>

Prev by Date: a question about internal modem
Next by Date: Re(2): Boot Problem
Previous by thread: security questions
Next by thread: Re: security questions
Index(es):
- Date
- Thread