From owner-freebsd-current@FreeBSD.ORG Tue May 10 05:10:06 2005 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 369B316A4EE; Tue, 10 May 2005 05:10:06 +0000 (GMT) Received: from smtpout.mac.com (smtpout.mac.com [17.250.248.44]) by mx1.FreeBSD.org (Postfix) with ESMTP id 09FE943D6A; Tue, 10 May 2005 05:10:06 +0000 (GMT) (envelope-from cswiger@mac.com) Received: from mac.com (smtpin08-en2 [10.13.10.153]) id j4A5A25V027156; Mon, 9 May 2005 22:10:02 -0700 (PDT) Received: from [192.168.1.6] (pool-68-161-53-96.ny325.east.verizon.net [68.161.53.96]) (authenticated bits=0)j4A59wnU020912; Mon, 9 May 2005 22:10:00 -0700 (PDT) In-Reply-To: <200505080957.19137.lofi@freebsd.org> References: <200505080425.24495.lofi@freebsd.org> <20050508073446.GA21550@freebie.xs4all.nl> <200505080957.19137.lofi@freebsd.org> Mime-Version: 1.0 (Apple Message framework v622) Content-Type: text/plain; charset=US-ASCII; format=flowed Message-Id: <3c33db4aa0c08292214219f868819726@mac.com> Content-Transfer-Encoding: 7bit From: Charles Swiger Date: Tue, 10 May 2005 01:09:57 -0400 To: Michael Nottebrock X-Mailer: Apple Mail (2.622) cc: Wilko Bulte cc: freebsd-current@freebsd.org Subject: Re: boot banner project X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 10 May 2005 05:10:06 -0000 [ Sorry for the delay in responding, I decided to take the weekend off from email. 600 FreeBSD messages await me, no doubt filled with a mixture of useful tech stuff and the copyright-thread-that-won't-die. ] On May 8, 2005, at 3:57 AM, Michael Nottebrock wrote: >>> You got lucky then, because there's some actual footshooting >>> potential in >>> doing that. Use toor. >> >> Interesting, I have been running /bin/sh since 1.0R (yes..) for root >> and it never bit me. Where is that footshooting potential? > > Sorry, I just scanned the thread before replying - there's probably no > footshooting potential in using /bin/sh for root. > > I was thinking about using (/usr/local/bin/)bash for root, something a > lot of > people try to do (until they notice a toe missing :). I've managed to plunk a round or two into my own foot, using a shell located in /usr/local, rather than staticly linked and present on /. :-) It's no fun to boot off a CD because the system can't automaticly fsck the filesystem that root's shell wants to use, and wants manual help... However, the toor account is a fine idea: every system I've got-- whether running FreeBSD or not-- uses /bin/sh for root's shell. However, I've also created toor accounts using my preferred shell [1] as a backup. If FreeBSD were to ship with tcsh as toor's shell, and /bin/sh as root's shell, that would still provide a super-user login with tcsh for those who want such a thing. However, logging in as a normal user and gaining privileges via sudo seems to work just as well, and avoids the need to login directly as a UID==0 account. -- -Chuck [1]: ZSH.