[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] how many shells do I need in /etc/shells?
- Subject: Re: [cobalt-security] how many shells do I need in /etc/shells?
- From: Ted Behling <TBehling@xxxxxxxxxxxxx>
- Date: Wed, 15 Aug 2001 08:11:14 -0400
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
At 03:27 PM 8/15/01 -0600, newsletters@xxxxxxxxxxx wrote:
>I am trying to secure my cobalt RAQ4. I saw in a security book a
>recommendation that i remove any unnecessary shells from /etc/shells. I'd
>probably keep bash and i guess bash2. Does anyone know what (if any)
>shells are required by the UI?
My RaQ 3 has the following shells configured:
/bin/bash
/bin/sh
/bin/tcsh
/bin/csh
/bin/badsh
bash and badsh are critical to your system. bash, of course, is the
default and primary shell. badsh is a pseudoshell that displays the
"Sorry, your account doesn't have shell access" message for non-shell
users. There's no reason to remove any of the other shells I've listed above.
Look in /etc/passwd to see what shells your users are using. A user can
change his shell with the 'chsh' command, so don't just go disabling shells
willy-nilly.
--------------------------------------------------------------------------
Ted Behling, Web Application Developer - Monarch Information Systems, Inc.
43 Folly Field Road, Unit 4, Hilton Head Island, SC 29928-5434
E-mail: mailto:TBehling@xxxxxxxxxxxxx
Phone/Fax: 1-800-842-7894 Local or Outside the USA: 1-843-842-7894
Cell Phone (urgent issues): 843-816-7895
Cell Phone E-mail: mailto:TedPhone@xxxxxxxxxxxxx (116 letter limit)
Web site: http://www.MonarchIS.net
--------------------------------------------------------------------------