Re: Root users shell == no existant shell /bin/bash

• Previous message: Matt Piechota: "Re: Root users shell == no existant shell /bin/bash"
• In reply to: Peter C. Lai: "Re: Root users shell == no existant shell /bin/bash"
• Next in thread: Craig Edwards: "Re: Re: Root users shell == no existant shell /bin/bash"
• Maybe reply: Craig Edwards: "Re: Re: Root users shell == no existant shell /bin/bash"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Fri, 9 Jul 2004 13:11:26 -0700
To: "Peter C. Lai" <sirmoo@cowbert.net>

Wrote Peter C. Lai:

> On Fri, Jul 09, 2004 at 11:58:35AM +0200, Anders Dahlqvist wrote:
> > torsdagen den 8 juli 2004 17.29 skrev Brandon Grace:
> > > I made a mistake setting my shell and have set the root users shell to
> > > /bin/bash instead of /bin/sh. I am curiuos if anyone knows how to fix this.
> > > The machines is FreeBSD 4.8-RELEASE-p4 and does not have sudo only su.
> >
> > ...and I gather that "su - toor" doesn't work either for some reason or other?
>
> toor has a disabled (*) password by default. What Brannon should have done was
> set a password for toor in the beginning, without mucking around with root's
> shell. But as a rule of thumb, you're probably superuser way too much if you
> develop an urge to change it shell anyway.

Some of us either have to do extensive work as root (I myself
extensively use shell programming on the command line -- which is not
easy nor sensible in either csh or tcsh), or find it extremely
annoying to use the least favorite shell during an emergency.

On the other hand, I've run across a sysadmin who always enables his
toor accounts -- and changes its shell to bash. As a result, not only
is there an alternate root account (good in case 'root' trampled on by
accident or purpose), but you can get root bash as a login shell while
leaving the real root to its normal shell.

Since then I've adopted this tip on the BSD system I run.

      -Daniel
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"

• Previous message: Matt Piechota: "Re: Root users shell == no existant shell /bin/bash"
• In reply to: Peter C. Lai: "Re: Root users shell == no existant shell /bin/bash"
• Next in thread: Craig Edwards: "Re: Re: Root users shell == no existant shell /bin/bash"
• Maybe reply: Craig Edwards: "Re: Re: Root users shell == no existant shell /bin/bash"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: hi all.. ... and someone gets access your shell account, ... Only root can install an su binary. ... Of course, if I have sudo ... (Fedora) Re: Default users and the passwords ... >FreeBSD, like almost all Unix OS, has other default users, like uucp, ... the 'toor' account is locked by default. ... IIRC, the purpose of toor is to have a different shell for root (ie: ... (FreeBSD-Security) Re: root & toor ... >> toor has bourne shell, root has C shell. ... ie. root's account is null-passwd'd and toor account is de-activated. ... Basically, from what I understand, root and toor accounts are the same, ... (FreeBSD-Security) Re: Kmail offline ... GUI sessions as root? ... I will not help you with problems running GUI as root. ... That was a straight copy paste from the shell it ran from. ... checking I could get it to do said the install was all right. ... (Fedora) Re: csh as default root Shell ... Another source is the the FreeBSD Handbook that is available ... As for changing the root shell, it is probably not a good idea. ... Put the new root account you created farther down in the passwd file ... (freebsd-questions)