On 4 November 2013 07:00, <[email protected]> wrote:
> Send blfs-support mailing list submissions to > Richard Melville wrote: > > Does anybody have any experience of noshell as a replacement for > /bin/false > > and /dev/null? I realise that it's quite old, but is it still useful as > a > > more secure way of creating a user with no login shell? > > > > Fish.com, together with the titan hardening package, seems to have > morphed > > into a a tropical fish website, but the noshell source code is still > > available from Debian. > > I'm unaware why noshell would be an advantage over /bin/false. What > does it do that is needed? > > -- Bruce > > AFAIK it provides better logging in the auth.log with an explicit *WARNING* when a user with noshell tries to log in. This is only heresay as I haven't used it; I was hoping for some advice. Richard
-- http://linuxfromscratch.org/mailman/listinfo/blfs-support FAQ: http://www.linuxfromscratch.org/blfs/faq.html Unsubscribe: See the above information page
