From owner-freebsd-security Thu Nov 16 8:22:24 2000 Delivered-To: freebsd-security@freebsd.org Received: from mail.sageian.com (ns.sage-consult.com [208.201.118.11]) by hub.freebsd.org (Postfix) with ESMTP id 7120C37B4C5 for ; Thu, 16 Nov 2000 08:22:14 -0800 (PST) Received: from pricli012 (proxy.sageian.com [208.201.118.126]) by mail.sageian.com (Postfix) with SMTP id D7ED26A904 for ; Thu, 16 Nov 2000 11:22:12 -0500 (EST) Message-ID: <00a001c04fe9$bd403590$4c00000a@sage> Reply-To: "Rossen Raykov" From: "Rossen Raykov" To: References: Subject: Re: Shell acces with not specified shell in /etc/shells Date: Thu, 16 Nov 2000 11:24:48 -0500 Organization: SageConsult, Princeton MIME-Version: 1.0 Content-Type: text/plain; charset="windows-1251" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4133.2400 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org This is not ssh related. It is login related. And the correct question have to be: Is it normal to receive /bin/sh for a login shell if the user account doesn't contain any shell in /etc/passwd? ----- Original Message ----- From: To: ; Cc: Sent: Thursday, November 16, 2000 4:21 AM Subject: RE: Shell acces with not specified shell in /etc/shells (Re: problem using sysinstall) > does ssh check /etc/shells ? > > -----Original Message----- > From: owner-freebsd-security@FreeBSD.ORG > [mailto:owner-freebsd-security@FreeBSD.ORG]On Behalf Of Rossen Raykov > Sent: Wednesday, November 15, 2000 5:15 PM > To: kris@FreeBSD.ORG > Cc: security@FreeBSD.ORG > Subject: Shell acces with not specified shell in /etc/shells (Re: problem > using sysinstall) > > > Initially the /etc/shells file contains an empty line (between the comments > and the first shell). > I tough that this is the reason why login is granted on a person without > shell in /etc/passwd. > But I ware wrong! > I removed this line from /etc/shells and even after that I was able to gain > root command prompt after a valid password. > The shell is /bin/sh > > Don't this violate the idea of /etc/shells? > > Regards, > Rossen > > ----- Original Message ----- > From: > To: > Cc: ; > Sent: Wednesday, November 15, 2000 4:53 PM > Subject: Re: problem using sysinstall > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message