rpw3@fortune.UUCP (05/16/84)
#R:log-hb:-15100:fortune:11600096:000:530
fortune!rpw3 May 15 14:23:00 1984
Of course, some sites control when some users can log in by adjusting
the shell. Other sites want certain users to log in only to non-shell
top-level programs. Some user I.D.s should NEVER be given a standard
shell. If one of those sites ever had a (hopefully) temporary problem
with a non-standard shell, your "fix" opens a potential security window...
Rob Warnock
UUCP: {ihnp4,ucbvax!amd70,hpda,harpo,sri-unix,allegra}!fortune!rpw3
DDD: (415)595-8444
USPS: Fortune Systems Corp, 101 Twin Dolphin Drive, Redwood City, CA 94065hans@log-hb.UUCP (05/17/84)
[]
Oh, sorry, didn't think of that. I certainly should have!
So it should only do this for a select group of users, or
perhaps only on the console?
Suggestions?
What of only doing this for standard shells? Such as ((t)c)sh?
It still was an annoying and potentially dangerous situation, with
^P at the console as the only easy solution. Are there ANY other
ways out of a thing like that?
I did have qualms about actually stopping the thing, and I sure felt
mighty pleased when it came up with no serious flaws in the file
systems...
--
{decvax,philabs}!mcvax!enea!log-hb!hans
Hans Albertsson,
TeleLOGIC AB
Box 1001,
S-14901 Nynashamn,
SWEDEN