From owner-freebsd-questions Fri Jul 19 16:52:53 1996 Return-Path: owner-questions Received: (from root@localhost) by freefall.freebsd.org (8.7.5/8.7.3) id QAA27003 for questions-outgoing; Fri, 19 Jul 1996 16:52:53 -0700 (PDT) Received: from relay-5.mail.demon.net (relay-5.mail.demon.net [158.152.1.48]) by freefall.freebsd.org (8.7.5/8.7.3) with SMTP id QAA26997 for ; Fri, 19 Jul 1996 16:52:51 -0700 (PDT) Received: from post.demon.co.uk by relay-5.mail.demon.net id ah28017; 20 Jul 96 0:22 +0100 Received: from jraynard.demon.co.uk ([158.152.42.77]) by relay-3.mail.demon.net id aa26527; 19 Jul 96 23:37 +0100 Received: (from fqueries@localhost) by jraynard.demon.co.uk (8.6.12/8.6.12) id UAA03726; Fri, 19 Jul 1996 20:23:45 GMT Date: Fri, 19 Jul 1996 20:23:45 GMT Message-Id: <199607192023.UAA03726@jraynard.demon.co.uk> From: James Raynard To: zgabor@code.hu CC: freebsd-questions@freebsd.org, 74361.2505@compuserve.com In-reply-to: <199607181443.OAA00410@CoDe.CoDe.hu> (message from Gabor Zahemszky on Thu, 18 Jul 1996 14:43:17 +0000 (GMT)) Subject: Re: CRYPT & Restricted Shell Sender: owner-questions@freebsd.org X-Loop: FreeBSD.org Precedence: bulk > > RESTRICTED Shell-Where can I obtain a restricted shell for FreeBSD_2.1. A shell > > that supports "sh -r " or a "rsh" similar to Solaris. This type shell will not > > allow "cd" and many other commands. > > I don't know about the normal sh, but pdksh (from the ports, or from > ftp.cs.mun.ca/pub/pdksh) has this feature. To be more explicit:- 1. Install pdksh port/package. 2. "cd /usr/local/bin; ln -s ksh rksh" 3. Use vipw or chsh to change the user's shell to /usr/local/bin/rksh. (I stumbled across this in the ksh man page earlier today. Apologies to all the people who I told it couldn't be done :-) -- James Raynard, Edinburgh, Scotland james@jraynard.demon.co.uk http://www.freebsd.org/~jraynard/