From owner-freebsd-security@FreeBSD.ORG Sat Jul 10 00:57:30 2004 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6179C16A4CE for ; Sat, 10 Jul 2004 00:57:30 +0000 (GMT) Received: from dfmm.org (walter.dfmm.org [66.180.195.210]) by mx1.FreeBSD.org (Postfix) with ESMTP id 20D5343D41 for ; Sat, 10 Jul 2004 00:57:30 +0000 (GMT) (envelope-from freebsd-security@dfmm.org) Received: (qmail 32991 invoked by uid 1000); 10 Jul 2004 00:57:29 -0000 Received: from localhost (sendmail-bs@127.0.0.1) by localhost with SMTP; 10 Jul 2004 00:57:29 -0000 Date: Fri, 9 Jul 2004 17:57:27 -0700 (PDT) From: Jason Stone X-X-Sender: jason@walter To: freebsd-security@freebsd.org In-Reply-To: <20040709204157.5f1f539f@bogomips.optonline.net> Message-ID: <20040709174707.K45935@walter> References: <40EECA19.3925.EDD9BBEB@localhost> <20040709142246.30a96c9f.djb@unixan.com> <20040709204157.5f1f539f@bogomips.optonline.net> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Subject: Re: bash as a login shell (was Root users shell == no existantshell /bin/bash) X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 10 Jul 2004 00:57:30 -0000 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 > > To be honest, also, it's not always very obvious which shell you log > > into at first. Just going to the right shell in the first place > > removes the confusion. > > ok, but when was bash declared the right shell for the job? Please please please let's not get into this. 1) the original poster is screwed - sorry dude, you'll have to shutdown. 2) different people have different styles of adminning, each with different good and bad points. while there is some merrit in having that discussion, most people are pretty firm in their opinions and it's probably not worth it. 3) different people like different shells - okay, whatever. the only possibly interesting thing that came up in this thread was the idea of removing the "toor" account. personally, I'd be for it. since the account is locked by default, anyone who wants to use it has to set it up. but since anyone who would know enough to want to use that style of adminning and set it up could just as easily recreate the account "from scratch" (it's about ten keystrokes any way you do it), then I don't see that much benefit to including it, especially since it's not very popular anymore anyway. -Jason -------------------------------------------------------------------------- Freud himself was a bit of a cold fish, and one cannot avoid the suspicion that he was insufficiently fondled when he was an infant. -- Ashley Montagu -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.2.3 (FreeBSD) Comment: See https://private.idealab.com/public/jason/jason.gpg iD8DBQFA7z75swXMWWtptckRAlEWAKCSlQ6t29fnjvEQ3p/CrXPI+7SsngCfSDvB y2uka2wbU68BJLl6V2ejzcU= =8zBK -----END PGP SIGNATURE-----