Great Circle Associates Majordomo-Users
(October 1996)
 

Indexed By Date: [Previous] [Next] Indexed By Thread: [Previous] [Next]

Subject: Re: Trusted user
From: Dave Wolfe <dwolfe @ risc . sps . mot . com>
Date: Wed, 16 Oct 1996 08:40:26 -0500 (CDT)
To: homer @ lightlink . com (Homer W. Smith)
Cc: Majordomo-users @ GreatCircle . COM
In-reply-to: <Pine.SUN.3.95.961015173156.28204A-100000@light.lightlink.com> from "Homer W. Smith" at Oct 15, 96 05:32:10 pm
Reply-to: Dave Wolfe <david_wolfe @ risc . sps . mot . com>

[ Homer W. Smith writes: ]
> 
> > Since using a shell script for the logon shell has an ever so tiny crack
> > in its security, just make the logon shell /bin/false instead.
> 
>      What exactly is this crack in security?

Between each line, including the BOF and the #! line. Several files must
be opened and read to run a shell and process a shell script. That
leaves a lot of room for interrupts, file switches, etc. It's pretty
esoteric, but it's there.

-- 
 Dave Wolfe    *Not a spokesman for Motorola*
 Motorola MMTG  6501 Wm. Cannon Dr. W. OE112  Austin  TX  78735-8598


References:
Indexed By Date Previous: Re: Argh! Invalid archive directory?!
From: Dave Wolfe <dwolfe@risc.sps.mot.com>
Next: Re: Majordomo and Smap
From: Dave Wolfe <dwolfe@risc.sps.mot.com>
Indexed By Thread Previous: Re: Trusted user
From: "Homer W. Smith" <homer@lightlink.com>
Next: Argh! Invalid archive directory?!
From: "Nathan J. Mehl" <nmehl@leftbank.com>

Google
 
Search Internet Search www.greatcircle.com