From owner-freebsd-security Wed Nov 15 14:13: 0 2000 Delivered-To: freebsd-security@freebsd.org Received: from mail.sageian.com (ns.sage-consult.com [208.201.118.11]) by hub.freebsd.org (Postfix) with ESMTP id 0969037B4CF; Wed, 15 Nov 2000 14:12:58 -0800 (PST) Received: from pricli012 (proxy.sageian.com [208.201.118.126]) by mail.sageian.com (Postfix) with SMTP id 7A8376A904; Wed, 15 Nov 2000 17:12:56 -0500 (EST) Message-ID: <010701c04f51$8d2659e0$4c00000a@sage> Reply-To: "Rossen Raykov" From: "Rossen Raykov" To: Cc: References: <003f01c04f3e$3c77e170$4c00000a@sage> <20001115125148.A21232@citusc17.usc.edu> <20001115131226.A21677@citusc17.usc.edu> <00d301c04f4d$e9802760$4c00000a@sage> <20001115135331.A22524@citusc17.usc.edu> Subject: Shell acces with not specified shell in /etc/shells (Re: problem using sysinstall) Date: Wed, 15 Nov 2000 17:15:24 -0500 Organization: SageConsult, Princeton MIME-Version: 1.0 Content-Type: text/plain; charset="windows-1251" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Initially the /etc/shells file contains an empty line (between the comments and the first shell). I tough that this is the reason why login is granted on a person without shell in /etc/passwd. But I ware wrong! I removed this line from /etc/shells and even after that I was able to gain root command prompt after a valid password. The shell is /bin/sh Don't this violate the idea of /etc/shells? Regards, Rossen ----- Original Message ----- From: To: Cc: ; Sent: Wednesday, November 15, 2000 4:53 PM Subject: Re: problem using sysinstall To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message