From owner-freebsd-questions Wed Oct 1 17:50:51 1997 Return-Path: Received: (from root@localhost) by hub.freebsd.org (8.8.7/8.8.7) id RAA19983 for questions-outgoing; Wed, 1 Oct 1997 17:50:51 -0700 (PDT) Received: from relay.acadiau.ca (root@relay.acadiau.ca [131.162.2.90]) by hub.freebsd.org (8.8.7/8.8.7) with ESMTP id RAA19977 for ; Wed, 1 Oct 1997 17:50:48 -0700 (PDT) Received: from dragon.acadiau.ca (dragon [131.162.1.79]) by relay.acadiau.ca (8.8.5/8.8.5) with SMTP id VAA03736 for ; Wed, 1 Oct 1997 21:49:58 -0300 (ADT) Received: by dragon.acadiau.ca id VAA22050; Wed, 1 Oct 1997 21:49:56 -0300 From: 026809r@dragon.acadiau.ca (Michael Richards) Message-Id: <199710020049.VAA22050@dragon.acadiau.ca> Subject: Secure Shell as a script To: freebsd-questions@freebsd.org Date: Wed, 1 Oct 1997 21:49:56 -0300 (ADT) X-Mailer: ELM [version 2.4 PL25] MIME-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit Sender: owner-freebsd-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk Does anyone know of security considerations of setting up a user as a shell as follows: set the shell to: /usr/local/bin/DragonShell This DragonShell contains the following: !/bin/sh telnet -E dragon.acadiau.ca Basically it is just to allow a user to telnet from the console of a box, but not to allow them shell access to that same box. (The -E switch does not allow them to use ^] to get to the telnet> prompt and try to execute a shell from there. Also, that sets the shell type to cons25. Does anyone know how to make this speak vt100? would the soluton be to add some line like set TERM = "vt100" before the telnet line in that script? Or is it more complicated than that? Basically what I am doing is making this a public dumb terminal that will allow them to log in and use another host. Any help would be appreciated... Thanks -Mike