[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Bug#5212: xdm *still* allows login for /bin/true users

H. S. Teoh <hsteoh@quickfur.yi.org> wrote:
> I've just verified that XDM still exhibits this bug, contrary to what
> Steve Durham said about PAM fixing it. I added /bin/true to /etc/shells,
> and changed a user's shell to /bin/true. XDM still logged me in.

IMHO this bug is bogus.  Raul's suggestion does not work, there is no
generic way to execute a command given an arbitrary shell.

What Steven Durham may have meant is that after switching to PAM, the
people who want to allow only FTP access can use something other than
/bin/true to do so, e.g., a simple list through pam_listfile.
Debian GNU/Linux 3.0 is out! ( http://www.debian.org/ )
Email:  Herbert Xu ~{PmV>HI~} <herbert@gondor.apana.org.au>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt

Reply to: