Re: Restrict commands for all users
From: Chris Jensen (cjensen_at_gmail.com)
Date: 08/13/04
- Previous message: Christopher.Fouts_at_infineon.com: "HELP please! Why is the agent NOT recognized"
- In reply to: Chris Jensen: "Re: Restrict commands for all users"
- Next in thread: Turner, Carl H [NTK]: "RE: Restrict commands for all users"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Fri, 13 Aug 2004 09:26:42 +1000 To: secureshell@securityfocus.com
On Thu, 12 Aug 2004 18:20:08 +1000, Chris Jensen <cjensen@gmail.com> wrote:
> > Have you tried to just change their login shell to "/usr/bin/unison" ?
> I was under the impression (from reading other posts) that this isn't
> a secure solution as it is possible for the client to request an
> alternate shell
Also, wouldn't this mean that when the client end executes
ssh user@server unison -arg1 -arg2
that the remote server would execute
/usr/bin/unison unison -arg1 -arg2
(ie launch the shell, passing it the command to execute, and the
arguments to that command, but as far as unison is concerned, the
first argument is erronious.)
- Previous message: Christopher.Fouts_at_infineon.com: "HELP please! Why is the agent NOT recognized"
- In reply to: Chris Jensen: "Re: Restrict commands for all users"
- Next in thread: Turner, Carl H [NTK]: "RE: Restrict commands for all users"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
