Re: Restricted Shells or Menu Based Shells

From: Miguel Angel Rodriguez Jodar (rodriguj@atc.us.es)
Date: 02/22/02

• Previous message: Sumit Dhar: "Re: Restricted Shells or Menu Based Shells"
• In reply to: Terrence Martin: "Restricted Shells or Menu Based Shells"
• Next in thread: Sumit Dhar: "Re: Restricted Shells or Menu Based Shells"
• Next in thread: Dano: "Re: Restricted Shells or Menu Based Shells"
• Reply: Sumit Dhar: "Re: Restricted Shells or Menu Based Shells"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Date: Fri, 22 Feb 2002 01:42:45 +0100
From: Miguel Angel Rodriguez Jodar <rodriguj@atc.us.es>
To: focus-linux@securityfocus.com

TM> pine for reading mail
TM> passwd for changing their password
TM> a .forward script (custome most likely) to set a new .forward.

This brings me back to my university days, when we were logged off from our UNIX
accounts for having excedded our disk-quota. When that happended, the sysadmins
only changed our login shell to something called /usr/local/bin/quotaexceded which
it was only a tiny shell script that echoes a warning about speaking to the
sysadmin to have the account re-enabled.

When it happened to me, I realize that I still could gain access to my account
using FTP (for backing up my stuff and lowering the quota). So... why not
putting something interesting in my .forward?

|/bin/chsh myaccount /bin/sh

After then, I only had to ask a friend to send me any kind of e-mail and voila!

-- 
Miguel Angel Rodriguez Jodar | http://icaro.eii.us.es
Arquitectura y Tecnología de Computadores
Universidad de Sevilla

---

• Previous message: Sumit Dhar: "Re: Restricted Shells or Menu Based Shells"
• In reply to: Terrence Martin: "Restricted Shells or Menu Based Shells"
• Next in thread: Sumit Dhar: "Re: Restricted Shells or Menu Based Shells"
• Next in thread: Dano: "Re: Restricted Shells or Menu Based Shells"
• Reply: Sumit Dhar: "Re: Restricted Shells or Menu Based Shells"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

---

Relevant Pages Protecting against dDOS bots (was: Newbie php problem) ... The form mail script posted that was used, ... requires the applicant to pass some kind of Turing test, ... Turing test if the account balance ever drops to zero. ... Log into the same account repeatedly, which consumes your credit ... (alt.php) Re: Entourage account setup applescript not working ... I pasted the script at the end just in case. ... When comparing the account settings on 2 computers, ... This script assists a user with the setup of his Exchange account ... Customize the network and server properties below with information ... (microsoft.public.mac.office.entourage) Re: Error 15401 using sp_grantlogin (not addressed by current KB articles) ... Restarting Windows 2000 resolved the problem for this particular account, ... confused when it sees a duplicate SID. ... > One way to get SQL Server to agree with the renamed NT ... > Preview (to ensure the script was created), ... (microsoft.public.sqlserver.security) Re: Local account creation ... While this script works fine for my 2003 environment, ... use the script in a startup GPO so that there a generic local admin account ... Dim objNetwork, strComputer, strUser ... (microsoft.public.windows.server.scripting) RE: Error 15401 using sp_grantlogin (not addressed by current KB articles) ... argument to get_sid, it returns a sid. ... The sysxlogins.name column stores the NT account ... One way to get SQL Server to agree with the renamed NT ... check "Script all objects", on the Formatting tab UNcheck "Generate the ... (microsoft.public.sqlserver.security)

---

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint

www.derkeiler.com  > Mailing-Lists  > securityfocus  > focus-linux  > 2002-02