Date: Wed, 22 Sep 2021 11:46:28 -0600 From: Warner Losh <imp@bsdimp.com> To: John Baldwin <jhb@freebsd.org> Cc: Baptiste Daroussin <bapt@freebsd.org>, FreeBSD Current <current@freebsd.org>, "freebsd-arch@freebsd.org" <arch@freebsd.org> Subject: Re: [HEADSUP] making /bin/sh the default shell for root Message-ID: <CANCZdfoQyZY%2B2FCQAKUDVy4qRMT-if8xaEXZ5m0U9ih3DdiZUw@mail.gmail.com> In-Reply-To: <82d7f4d1-5ce9-c7ed-d993-b16b3ddac6e3@FreeBSD.org> References: <20210922083645.4vnoajyvwq6wfhdf@aniel.nours.eu> <82d7f4d1-5ce9-c7ed-d993-b16b3ddac6e3@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--000000000000a7719305cc99182c Content-Type: text/plain; charset="UTF-8" On Wed, Sep 22, 2021 at 9:35 AM John Baldwin <jhb@freebsd.org> wrote: > On 9/22/21 1:36 AM, Baptiste Daroussin wrote: > > Hello, > > > > TL;DR: this is not a proposal to deorbit csh from base!!! > > > > For years now, csh is the default root shell for FreeBSD, csh can be > confusing > > as a default shell for many as all other unix like settled on a bourne > shell > > compatible interactive shell: zsh, bash, or variant of ksh. > > > > Recently our sh(1) has receive update to make it more user friendly in > > interactive mode: > > * command completion (thanks pstef@) > > * improvement in the emacs mode, to make it behave by default like other > shells > > * improvement in the vi mode (in particular the vi edit to respect > $EDITOR) > > * support for history as described by POSIX. > > > > This makes it a usable shell by default, which is why I would like to > propose to > > make it the default shell for root starting FreeBSD 14.0-RELEASE (not > MFCed) > > > > If no strong arguments has been raised until October 15th, I will make > this > > proposal happen. > > > > Again just in case: THIS IS NOT A PROPOSAL TO REMOVE CSH FROM BASE! > > I think this is fine. I would also be fine with either removing 'toor' > from the > default password file or just leaving it as-is for POLA. (I would probably > prefer removing it outright.) > I think this is also fine. I also think we should remove toor from the default password file for one fewer attack surfaces. I strongly prefer this. Users that want toor can add it to their system and/or provisioning scripts. Warner --000000000000a7719305cc99182c--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CANCZdfoQyZY%2B2FCQAKUDVy4qRMT-if8xaEXZ5m0U9ih3DdiZUw>