Date: Mon, 11 Sep 2006 16:20:26 +0200 From: Karol Kwiatkowski <freebsd@orchid.homeunix.org> To: FreeBSD Questions <freebsd-questions@freebsd.org> Subject: Putting a command/script as a user's shell Message-ID: <450570AA.6050505@orchid.homeunix.org>
next in thread | raw e-mail | index | archive | help
This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enig4C11F8F96E53391EB62227E7 Content-Type: text/plain; charset=ISO-8859-2 Content-Transfer-Encoding: quoted-printable Good day everyone, I'm trying to make it possible to restart (as in 'shutdown -r now') a FreeBSD based router from LAN network as easy as possible so it can be used by non-technical people. I'm sure some will ask why would I need that - it's an USB modem connecting to ADSL line that locks up sometimes and all my attempts to make it restart itself have failed. I came up with this idea: - add another user to the system, let it be 'restart' - add 'restart' to group operator - let 'restart' to login through SSH from LAN with a key (passwords forbidden) - put a restart command as it's shell (so it automagically restarts the router) Does that sound reasonably? Security is not an issue, it's "secure enough" for me. OK, now for technical question. I realise I cannot put arguments to the command in the "shell area" in passwd file, so I wrote a short script= : $ cat /home/restart/restart.sh #!/bin/sh /sbin/shutdown -r now $ ls -l /home/restart/restart.sh -rwx------ 1 restart restart 33 Sep 11 15:24 put that as restart's user shell: # grep restart /etc/master.passwd restart:*:1017:1017::0:0:restart:/home/restart:/home/restart/restart.sh and tried locally but it's not working: # su - restart su: /home/restart/restart.sh: Permission denied I'm not sure where 'Permission denied' come from. Setup looks to be OK, here's what I get with /usr/bin/id as a shell: # su - restart uid=3D1017(restart) gid=3D1017(restart) groups=3D1017(restart), 5(operato= r) I'm sure I'm missing something here. Anyone have some pointers? Cheers, Karol --=20 Karol Kwiatkowski <freebsd at orchid dot homeunix dot org> OpenPGP: http://www.orchid.homeunix.org/carlos/gpg/0x06E09309.asc --------------enig4C11F8F96E53391EB62227E7 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.5 (FreeBSD) Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org iD8DBQFFBXC1ezeoPAwGIYsRCDSJAJ9DH1VLivC3bYBBzVyxTQyC0l2fhACeI7LE gJX0AieMn+feI+/a8aHgLsk= =2LhJ -----END PGP SIGNATURE----- --------------enig4C11F8F96E53391EB62227E7--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?450570AA.6050505>