Thomas Koch wrote:
> I thought it would be a sane thing if login would fallback to /bin/sh if
> - - the shell is not an executable (or not there)
This is a long standing method for people to use to disable logins.
Changing that would be a very bad thing. Even if it isn't the
canonical "best" way
Quoting Thomas Koch (tho...@koch.ro):
> Bdale explained me, that it might most probably be a very stupid thing not to
> have a fallback user account and no login password for root. But we might
> consider helping stupid users too.
Isn't that the reason for which we have rescue disks?
signatu
severity 719890 wishlist
thanks
That's probably a bad idea, since admins may specify nonextant *or
restricted* shells in order to disable a user. Specifying a nonextant
shell may not be effective on its own (ssh can still forward ports,
etc); however, if a restricted shell is accidentally removed
Package: login
Version: 1:4.1.5.1-1
Severity: normal
Tags: upstream
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA256
Hi,
I just noticed that I could easily lock me out of my system:
- - have a non-root-login setup with sudo only
- - have only one user with sudo capabilities
- - specify zsh as she
4 matches
Mail list logo
