From owner-freebsd-questions Wed Oct 24 20:26:49 2001 Delivered-To: freebsd-questions@freebsd.org Received: from 4evermail.com (equinox.voyageri.net [204.92.209.4]) by hub.freebsd.org (Postfix) with SMTP id E475337B403 for ; Wed, 24 Oct 2001 20:26:46 -0700 (PDT) Received: (qmail 60277 invoked from network); 25 Oct 2001 02:25:16 -0000 Received: from 66-65-109-16.nyc.rr.com (HELO sioux) (66.65.109.16) by equinox.voyageri.net with SMTP; 25 Oct 2001 02:25:16 -0000 From: "Jonathan M. Slivko" To: "'BSD Freak'" , "'FreeBSD Questions'" Subject: RE: Which way is better to deny shell access Date: Wed, 24 Oct 2001 22:24:38 -0400 Message-ID: <000b01c15cfc$32efe0e0$6501a8c0@sioux> MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook, Build 10.0.2616 Importance: Normal X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 In-Reply-To: <18f1ed818ec2ec.18ec2ec18f1ed8@mbox.com.au> Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG IMO, it's accomplishing the same thing, but by different methods. --Jonathan ----------------------------------------------------- Jonathan Slivko - Voyager Internet - www.voyageri.net Web Hosting - Web Desgin - UNIX Shell Accounts jslivko@voyageri.net - Phone: (212) 663-1109 -----Original Message----- From: owner-freebsd-questions@FreeBSD.ORG [mailto:owner-freebsd-questions@FreeBSD.ORG] On Behalf Of BSD Freak Sent: Wednesday, October 24, 2001 10:20 PM To: FreeBSD Questions Subject: Which way is better to deny shell access Hi everyone, Just wondering.... we have a whole heap of pop3 users... we deny them shell access by assigning their shell as /sbin/nologin ( the same shell as many of the system accounts)... however I noticed if I use the adduser utility to create a user with no shell, it assigns /nonexistent as their shell...... Which is better? I feel that /nonexitent is probably best because it does not let them login at all via the shell however /sbin/nologin lets them login, reads them the motd and then logs them out automatically....... Am I right in assuming /nonexistent is a better choice? --------------------------------------------------------------------- mBox makes you work Smarter, not Harder, from only $0.58 per WEEK! Visit http://www.mbox.com.au To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message