On Wed, Jan 26, 2000 at 09:23:39PM -0800, Faried Nawaz wrote:
Stig Hackvän wrote:
qmail invokes commands with /bin/sh regardless of the user's login shell, so even
if a user has /bin/false for a shell, that user's .qmail file can be used to gain
shell access.
And how does someone
qmail invokes commands with /bin/sh regardless of the user's login shell, so even if a
user has /bin/false for a shell, that user's .qmail file can be used to gain shell
access.
i consider this to be a qmail bug.
stig
--
Stig... Friend of Hacking ... 707-987-3236
