Date: Thu, 16 Dec 2004 11:11:03 +0000 From: Matthew Seaman <m.seaman@infracaninophile.co.uk> To: Adam <adam@jamradar.com> Cc: freebsd-questions@FreeBSD.org Subject: Re: Why reccomend Bash shell? Message-ID: <41C16D47.7030302@infracaninophile.co.uk> In-Reply-To: <005a01c4e31c$efc4d460$0200a8c0@PANASONIULSWMR> References: <005a01c4e31c$efc4d460$0200a8c0@PANASONIULSWMR>
next in thread | previous in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 2440 and 3156)
--------------enigB7B7819548101B0E322D5462
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Adam wrote:
> In Greg Lehey's book "The Complete FreeBSD" he reccomends changing the default shell for users to bash shell. -p. 94
>
> What are the Pro's/Con's of using bash as opposed to the other shells?
On point that no one has mentioned on this list yet is that it is a good
idea to have root's shell be entirely contained on the root partition of
the system -- ie. not just the executable, but any shlibs it requires as
well. There's been a thread over on freebsd-ports@... about ppp(8)
apparently failing because of problems linking libintl -- which actually
turned out to be because root's shell had been changed to bash(1).
That's why there is a 'toor' account -- you can use whatever shell you
like with that a/c and not fear mucking up important bits of the system.
On the other hand, I take the view that the less done by the super user
the better, and discourage myself to use sudo(1) preferentially and to
keep su(1) sessions as short as possible by making root's shell as
/unfriendly/ as possible.
You could even go as far as Solaris does, where the root shell is
/sbin/sh -- a statically linked cut down version of the standard Bourne
shell that's got the best chance of still working even on a severely
banjaxed system. In FreeBSD terms, that would equate to using
/rescue/sh -- mind you although that's statically linked, it's still a
fully capable version of /bin/sh.
Cheers,
Matthew
--
Dr Matthew J Seaman MA, D.Phil. 8 Dane Court Manor
School Rd
PGP: http://www.infracaninophile.co.uk/pgpkey Tilmanstone
Tel: +44 1304 617253 Kent, CT14 0JL UK
--------------enigB7B7819548101B0E322D5462
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: OpenPGP digital signature
Content-Disposition: attachment; filename="signature.asc"
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (FreeBSD)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iQCVAwUBQcFtTJr7OpndfbmCAQJ/egQA6EdUlojbgi2fRz/rWI5hwLoJG6Zl81iG
rHfOfLksS4cFZNFCU0Q5wr+DmylX4N5ybxNMRNoHitxm1xUHFNXtovyZKN8tHRFP
aaycbZFB4/Mdx3xS7HzJYOKFm6+LYqx6M3UKaeq/k3RLebYLwClul8qpmjE4IiWq
m7Gq/HJVST4=
=1jN0
-----END PGP SIGNATURE-----
--------------enigB7B7819548101B0E322D5462--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?41C16D47.7030302>