Re: /bin/sh for all users?
Dragos == Dragos Delcea [EMAIL PROTECTED] writes: Dragos I know that, but I'm courious: why /etc/passwd didn't came Dragos with /bin/false as default setting (I'm talking about system Dragos accounts that really don't use/need the shell) There are some programs which rely on the fact that a system user has a valid shell. su for example: if you set the shell of a user to /bin/false, you can't do things like su user -c However, if you look in /etc/shadow, you will notice lines like: daemon:*:11419:0:9:7::: The `*' in the second field prevents people from logging in directly using this account. -- G. ``Iggy'' Geens - ICQ: #64109250 Home: [EMAIL PROTECTED] - Work: [EMAIL PROTECTED] WWW: http://users.pandora.be/guy.geens/ ``I was thinking about how everyone was dying and maybe it's time to live.'' - Eels
/bin/sh for all users?
hello list, why in debian (I have 2.2r3) all the system users have a sh shell? I have various other linuxes, a freebsd, and none has this settings in /etc/passwd...; I want to know the reason behind this, 'couse I've heard and it seems resonable that it offers more security to have the shell bin false... dragos
Re: /bin/sh for all users?
Dragos Delcea wrote: hello list, why in debian (I have 2.2r3) all the system users have a sh shell? I have various other linuxes, a freebsd, and none has this settings in /etc/passwd...; I want to know the reason behind this, 'couse I've heard and it seems resonable that it offers more security to have the shell bin false... dragos that would be those settings and /bin/false...
RE: /bin/sh for all users?
the /bin/flase shell is there, when you add a user you decide what shell they have, if you dont want them to have a shell edit the passwd file and make any changes you feel are needed -Original Message- From: Dragos Delcea To: debian-user@lists.debian.org Sent: 14/06/01 11:11 Subject: /bin/sh for all users? hello list, why in debian (I have 2.2r3) all the system users have a sh shell? I have various other linuxes, a freebsd, and none has this settings in /etc/passwd...; I want to know the reason behind this, 'couse I've heard and it seems resonable that it offers more security to have the shell bin false... dragos -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED] ## Attention: Any views or opinions presented are solely those of the author and not necessarily those of GlobalNetFinancial.com or its subsidiary companies. ##
Re: /bin/sh for all users?
Paul Rae wrote: the /bin/flase shell is there, when you add a user you decide what shell they have, if you dont want them to have a shell edit the passwd file and make any changes you feel are needed I know that, but I'm courious: why /etc/passwd didn't came with /bin/false as default setting (I'm talking about system accounts that really don't use/need the shell) Regards dragos