On Wed, Mar 07, 2001 at 10:05:25AM +0100, Jörgen Persson wrote:
[snip]
> > /bin/false is a very silly idea. /nonexistent is much better.
>
> interesting -- why??
Because depending on your /bin/false and /bin/sh implementation, it's
behaviour can be modified by toying with environment variables such as
ENV.
Remote exploits for accounts with /bin/false as shell have been seen
on bugtraq.
For the qmail accounts the risk should be small (they have * instead
of a crypted password) but do *you* trust all different programs doing
authentication on your system (ssh, telnet, rsh, whatever you use?)
Greetz, Peter.
