Re: Minimizing shell access on my VPS

To: debian-user@lists.debian.org
Subject: Re: Minimizing shell access on my VPS
From: Chris Davies <chris-usenet@roaima.co.uk>
Date: Sat, 18 Jan 2014 14:50:21 +0000
Message-id: <[🔎] dugqqax2le.ln2@news.roaima.co.uk>
Reply-to: chris@roaima.co.uk
References: <[🔎] 20140118012316.47d85e2c@rosie> <[🔎] 20140118175220.9466d3e8eca89f8bca1c22e1@gmail.com>

Reco <recoverym4n@gmail.com> wrote:
> Set up another user with /bin/rbash (not straight /bin/bash) as a shell.
> Set PATH in .bashrc of said user to that program.

Unfortunately rbash has a race condition built in to its execution of
.profile by definition (it doesn't disable the interrupt signal until
after the .profile has been executed, so it becomes quite possible to
Ctrl/C during login and gain an interactive shell). You'd be better off
with rksh, which works properly.

But then again, .profile can be bypassed by a non-interactive login:

	ssh remotehost mv -f .profile .p
	ssh remotehost

Chris

Reply to:

Follow-Ups:
- Re: Minimizing shell access on my VPS
  - From: Reco <recoverym4n@gmail.com>

References:
- Minimizing shell access on my VPS
  - From: Aubrey Raech <aubrey@raech.net>
- Re: Minimizing shell access on my VPS
  - From: Reco <recoverym4n@gmail.com>

Prev by Date: Acceptable on list? was: Re: sad but true, Linux sucks, a bit
Next by Date: Re: Connot load Wheezy in a "virgin" desktop -- FAILURE
Previous by thread: Re: Minimizing shell access on my VPS
Next by thread: Re: Minimizing shell access on my VPS
Index(es):
- Date
- Thread