Date: Fri, 22 Aug 2014 08:18:44 +0100 From: Arthur Chance <freebsd@qeng-ho.org> To: John Case <case@SDF.ORG> Cc: freebsd-questions@freebsd.org Subject: Re: Did /nonexistent go away in FreeBSD 9 ? Message-ID: <53F6EED4.5050505@qeng-ho.org> In-Reply-To: <Pine.NEB.4.64.1408212027070.26741@faeroes.freeshell.org> References: <Pine.NEB.4.64.1408192023410.7410@faeroes.freeshell.org> <53F59BD2.8010902@qeng-ho.org> <Pine.NEB.4.64.1408212027070.26741@faeroes.freeshell.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On 21/08/2014 21:29, John Case wrote: > > On Thu, 21 Aug 2014, Arthur Chance wrote: > >>> I also have securelevel=2 ... >>> >>> So, did something change with /nonexistent in FreeBSD 9, or does >>> securelevel=2 screw this up somehow ?? >> >> The entire point about /nonexistent is that it is nonexistent. > > > The problem was the securelevel=2. > > If you have securelevel=2 set, the username for an ssh tunnel cannot log > in and set up the tunnel with a shell of /nonexistent. > > I have no idea why - ssh tunnel failed with a message taht the home > directory did not exist ... which is correct, since it shouldn't exist. > > I removed the securelevel setting and it worked perfectly (the ssh tunnel). > > I have no idea why the securelevel setting would cause this... > > Any ideas ? I would actually like to set securelevel=2, but I also need > my ssh tunnel to work ... How about setting the home directory to /var/empty? It exists but has the schg flag set so cannot have any entries created in it. IIRC it's used by various daemons that need a directory to chdir to but which shouldn't write to it, which sounds like your use case.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?53F6EED4.5050505>