Re: Compromise of the nobody account?
- From: Unruh <unruh-spam@xxxxxxxxxxxxxx>
- Date: Tue, 29 Jan 2008 03:36:45 GMT
nmm1@xxxxxxxxxxxxx (Nick Maclaren) writes:
In article <1ibfkqm.w7ucbwfftdzgN%hugo@xxxxxxxxx>,
hugo@xxxxxxxxx (Hugo Villeneuve) writes:
|> Unruh <unruh-spam@xxxxxxxxxxxxxx> wrote:
|>
|> > Actually there is no way to shell to it at all. Even su as root will then
|> > run the shell, /bin/true or /bin/false
|>
|> My "su" has a "-m" option that allow root to change to an account with
|> an invalid (or exit immediatly) shell.
One can argue for hours about whether it should do nothing (/bin/true),
flag failure (/bin/false), be non-executable (/dev/null), not exist
or execute "kill -9 0". All have their points.
Has anyone ever suggested the last options?
Regards,.
Nick Maclaren.
- Follow-Ups:
- Re: Compromise of the nobody account?
- From: Nick Maclaren
- Re: Compromise of the nobody account?
- References:
- Compromise of the nobody account?
- From: mike3
- Re: Compromise of the nobody account?
- From: Moe Trin
- Re: Compromise of the nobody account?
- From: Unruh
- Re: Compromise of the nobody account?
- From: mike3
- Re: Compromise of the nobody account?
- From: Unruh
- Re: Compromise of the nobody account?
- From: mike3
- Re: Compromise of the nobody account?
- From: Unruh
- Re: Compromise of the nobody account?
- From: Hugo Villeneuve
- Re: Compromise of the nobody account?
- From: Nick Maclaren
- Compromise of the nobody account?
- Prev by Date: Re: Compromise of the nobody account?
- Next by Date: Re: Compromise of the nobody account?
- Previous by thread: Re: Compromise of the nobody account?
- Next by thread: Re: Compromise of the nobody account?
- Index(es):
Relevant Pages
|
|
