Majordomo-Users: Re: Trusted user

Majordomo-Users
(October 1996)

Indexed By Thread: [Previous] [Next]

Subject:	Re: Trusted user
From:	Dave Wolfe <dwolfe @ risc . sps . mot . com>
Date:	Wed, 16 Oct 1996 08:40:26 -0500 (CDT)
To:	homer @ lightlink . com (Homer W. Smith)
Cc:	Majordomo-users @ GreatCircle . COM
In-reply-to:	<Pine.SUN.3.95.961015173156.28204A-100000@light.lightlink.com> from "Homer W. Smith" at Oct 15, 96 05:32:10 pm
Reply-to:	Dave Wolfe <david_wolfe @ risc . sps . mot . com>

[ Homer W. Smith writes: ]
> 
> > Since using a shell script for the logon shell has an ever so tiny crack
> > in its security, just make the logon shell /bin/false instead.
> 
>      What exactly is this crack in security?

Between each line, including the BOF and the #! line. Several files must
be opened and read to run a shell and process a shell script. That
leaves a lot of room for interrupts, file switches, etc. It's pretty
esoteric, but it's there.

-- 
 Dave Wolfe    *Not a spokesman for Motorola*
 Motorola MMTG  6501 Wm. Cannon Dr. W. OE112  Austin  TX  78735-8598

References:

Re: Trusted user
From: "Homer W. Smith" <homer@lightlink.com>

Indexed By Date	Previous:	Re: Argh! Invalid archive directory?! From: Dave Wolfe <dwolfe@risc.sps.mot.com>
Indexed By Date	Next:	Re: Majordomo and Smap From: Dave Wolfe <dwolfe@risc.sps.mot.com>
Indexed By Thread	Previous:	Re: Trusted user From: "Homer W. Smith" <homer@lightlink.com>
Indexed By Thread	Next:	Argh! Invalid archive directory?! From: "Nathan J. Mehl" <nmehl@leftbank.com>