|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Subject: Re: Restricting user to a directory
From: User Datagram Protocol (udp
closed-networks.com)Date: Wed Jun 07 2000 - 12:33:24 CDT
- Next message: FreeBSD Security Advisories: "FreeBSD Security Advisory: FreeBSD-SA-00:21.ssh"
- Previous message: Mark Murray: "Re: cvsup of internat stuff"
- In reply to: Peter Pentchev: "Re: Restricting user to a directory"
- Reply: User Datagram Protocol: "Re: Restricting user to a directory"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
What about SYSV-style invocation with argv[0] == "/bin/rsh" ?
Ick.
On Wed, Jun 07, 2000 at 08:02:07PM +0300, Peter Pentchev wrote:
> not really. bash should be configured at runtime as to whether to *allow*
> invocation as a restricted shell; most precompiled versions of bash come
> with this capability.
> From there, just start it as rbash or bash -r, and it runs restricted.
--
Bruce M. Simpson aka 'udp' Security Analyst & UNIX Development Engineer
WWW: www.closed-networks.com/~udp
Dundee www.packetfactory.net/~udp
United Kingdom email: udpclosed-networks.com
To Unsubscribe: send mail to majordomoFreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
- Next message: FreeBSD Security Advisories: "FreeBSD Security Advisory: FreeBSD-SA-00:21.ssh"
- Previous message: Mark Murray: "Re: cvsup of internat stuff"
- In reply to: Peter Pentchev: "Re: Restricting user to a directory"
- Reply: User Datagram Protocol: "Re: Restricting user to a directory"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]