Re: /bin/sh for all users?

To: debian-user@lists.debian.org
Subject: Re: /bin/sh for all users?
From: Guy Geens <ggeens@iname.com>
Date: 16 Jun 2001 10:30:46 +0200
Message-id: <[🔎] 87ithwaksp.fsf@andor.geens.internal>
In-reply-to: <[🔎] 3B289B0E.4C7C9CC6@farmexim.ro>
References: <[🔎] 569009D3336ED41191D700508BDE66133D79D3@AMAZON> <[🔎] 3B289B0E.4C7C9CC6@farmexim.ro>

>>>>> "Dragos" == Dragos Delcea <dragos.delcea@farmexim.ro> writes:

Dragos> I know that, but I'm courious: why /etc/passwd didn't came
Dragos> with /bin/false as default setting (I'm talking about system
Dragos> accounts that really don't use/need the shell)

There are some programs which rely on the fact that a system user has
a valid shell. su for example: if you set the shell of a user to
/bin/false, you can't do things like "su user -c ...".

However, if you look in /etc/shadow, you will notice lines like:
daemon:*:11419:0:99999:7:::

The `*' in the second field prevents people from logging in directly
using this account.

-- 
G. ``Iggy'' Geens - ICQ: #64109250
Home: <ggeens@iname.com> - Work: <ggeens@capgemini.be>
WWW: http://users.pandora.be/guy.geens/
  ``I was thinking about how everyone was dying
    and maybe it's time to live.''              - Eels

Reply to:

References:
- RE: /bin/sh for all users?
  - From: Paul Rae <PRae@glbn.co.uk>
- Re: /bin/sh for all users?
  - From: Dragos Delcea <dragos.delcea@farmexim.ro>

Prev by Date: Re: xemacs 21.4.1-2 forces DNS lookup
Next by Date: isdnutils + dynamic dns (ms-get-dns in ipppd(8))
Previous by thread: Re: /bin/sh for all users?
Next by thread: Apache: Connection refused ...
Index(es):
- Date
- Thread