On Jun 27, 2001 13:07 -0400 [EMAIL PROTECTED] wrote to...:
|> You add /bin/ftponly in /etc/shells.
|
|And if I'm not mistaken, if they are somehow now able to execute the
|chsh command, then they have a valid shell account they can log in to. :-(
|
|While they shouldn't be able to run chsh, or the equivalent, putting their
|shell in /etc/shells puts them that much closer to an account.
|
chroot will help to prevent this kind of attempts if you consider
/bin/false not so safe. User will be chrooted to allowed ground and there
will be no way back. Or is there?. Watch out for links. They may get
broken.
Kalev
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
