Harry Behrens wrote:
> it means setting the login shell (in /etc/passwd) to /bin/false (which is
> equivalent to noshell).
> This means that these user IDs (lp, daemon etc.) have no access to any
> command line shell - which they don't need anyway as they are not
> interactive).
Or on some operating systems, they provide you a /bin/nologin for no
apparent reason, when /bin/false works just as well; Still, if it's
there, you might as well use it just to conform to the usual method.
BTW, one thing I have done on an occasion or two is put /bin/true into
/etc/shells so you can set someone's shell to it and then they can FTP
but not log in (due to their shell returning "true" and exiting.)
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
- Solaris security shell account SAGI MINI
- RE: Solaris security shell account Harry Behrens
- Re: Solaris security shell account Ron DuFresne
- RE: Solaris security shell account McEwen, Don \(NCI\)
