Date: Wed, 15 Jul 1998 11:55:37 -0400 From: Matthew Hunt <mph@pobox.com> To: Gerald Pfeifer <pfeifer@dbai.tuwien.ac.at> Cc: Wes Peters <wes@softweyr.com>, tom@uniserve.com, paulo@nlink.com.br, jer@jorsm.com, freebsd-stable@FreeBSD.ORG Subject: Re: Finger and getpwent Message-ID: <19980715115537.A28115@mstar.astro.psu.edu> In-Reply-To: <Pine.GSO.4.00.9807151703420.16276-100000@markab.dbai.tuwien.ac.at>; from Gerald Pfeifer on Wed, Jul 15, 1998 at 05:06:16PM %2B0200 References: <19980715101943.A27075@mstar.astro.psu.edu> <Pine.GSO.4.00.9807151703420.16276-100000@markab.dbai.tuwien.ac.at>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Jul 15, 1998 at 05:06:16PM +0200, Gerald Pfeifer wrote: > In principle you could set the shell to /usr/bin/yes (or any dummy shell) > and add that to /etc/shells. But then you are allowing FTP access, which you don't usually want to do. Depending on the particulars of your machine, the users could run arbitrary commands using .forward. I've always been under the impression that shell and FTP checking /etc/shells and mail services *not* doing so was a deliberate design decision, not an oversight. -- Matthew Hunt <mph@pobox.com> * Stay close to the Vorlon. http://www.pobox.com/~mph/pgp.key for PGP public key 0x67203349. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980715115537.A28115>