I've set them to a shell of /bin/false and did a "passwd -l" to lock them
so you can't logon to them anyway.
Don
-----Original Message-----
From: SAGI MINI [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 08, 2001 3:02 AM
To: [EMAIL PROTECTED]
Subject: Solaris security shell account
There is a suggestion that in order to secure the OS, the following need to
set to noshell:
daemon shell, bin shell, sys shell, adm shell, lp shell, smtp shell, uucp
shell, listen shell, nobody shell ,etc.
What exactly do they mean by putting shell to noshell. It was claimed that
any process such as lp daemon even without granting a password to the
account is able to access to the system provided the shell environemnt is
available.
If such, how the above is possible to achieve and what are those
configuration need to be considered. Please advise.
regards.
_________________________________________________________________________
Get Your Private, Free E-mail from MSN Hotmail at http://www.hotmail.com.
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
