Bug#5212: xdm still allows login for /bin/true users

To: "H. S. Teoh" <hsteoh@quickfur.yi.org>, 5212@bugs.debian.org
Subject: Bug#5212: xdm *still* allows login for /bin/true users
From: Herbert Xu <herbert@gondor.apana.org.au>
Date: Sun, 01 Dec 2002 09:28:34 +1100
Message-id: <[🔎] E18IG6E-0002Sk-00@gondolin.me.apana.org.au>
Reply-to: Herbert Xu <herbert@gondor.apana.org.au>, 5212@bugs.debian.org
In-reply-to: <[🔎] 20021130123507.GA26730@crystal>

H. S. Teoh <hsteoh@quickfur.yi.org> wrote:
> 
> I've just verified that XDM still exhibits this bug, contrary to what
> Steve Durham said about PAM fixing it. I added /bin/true to /etc/shells,
> and changed a user's shell to /bin/true. XDM still logged me in.

IMHO this bug is bogus.  Raul's suggestion does not work, there is no
generic way to execute a command given an arbitrary shell.

What Steven Durham may have meant is that after switching to PAM, the
people who want to allow only FTP access can use something other than
/bin/true to do so, e.g., a simple list through pam_listfile.
-- 
Debian GNU/Linux 3.0 is out! ( http://www.debian.org/ )
Email:  Herbert Xu ~{PmV>HI~} <herbert@gondor.apana.org.au>
Home Page: http://gondor.apana.org.au/~herbert/
PGP Key: http://gondor.apana.org.au/~herbert/pubkey.txt

Reply to:

References:
- Bug#5212: xdm *still* allows login for /bin/true users
  - From: "H. S. Teoh" <hsteoh@quickfur.yi.org>

Prev by Date: Bug#171294: xserver-xfree86: shift-num lock makes X beep alot
Next by Date: Bug#171305: Xfree86 Package Configuration Failure
Previous by thread: Bug#5212: xdm *still* allows login for /bin/true users
Next by thread: Re: lintian should warn about /usr/X11R6 usage being disallowed
Index(es):
- Date
- Thread

Bug#5212: xdm *still* allows login for /bin/true users

Bug#5212: xdm still allows login for /bin/true users