Date: Tue, 14 Aug 2001 13:45:47 -0300 From: Fernando Schapachnik <fschapachnik@vianetworks.com.ar> To: alexus <ml@db.nexgen.com> Cc: Will Andrews <will@physics.purdue.edu>, David Kirchner <davidk@accretivetg.com>, Ivan Krstic <ike@gnjilux.srk.fer.hr>, freebsd-security@FreeBSD.ORG Subject: Re: bin user Message-ID: <20010814134547.D6223@ns1.via-net-works.net.ar> In-Reply-To: <001d01c124df$2962eae0$0d00a8c0@alexus>; from ml@db.nexgen.com on Tue, Aug 14, 2001 at 12:35:17PM -0400 References: <20010813093238.B38221-100000@localhost> <000b01c1241f$d0e74c90$0d00a8c0@alexus> <20010814111413.N5712@bohr.physics.purdue.edu> <001d01c124df$2962eae0$0d00a8c0@alexus>
next in thread | previous in thread | raw e-mail | index | archive | help
En un mensaje anterior, alexus escribió:
> # su -m bin
> su: /usr/local/bin/bash: Permission denied
> # id
> uid=0(root) gid=0(wheel) groups=0(wheel), 2(kmem), 3(sys), 4(tty),
> 5(operator), 20(staff), 31(guest)
> #
>
> it won't switch to bin for some reason:(
From man su:
-m Leave the environment unmodified. The invoked shell is your lo-
gin shell, and no directory changes are made. As a security pre-
caution, if the target user's shell is a non-standard shell (as
defined by getusershell(3)) and the caller's real uid is non-ze-
ro, su will fail.
I guess that the read uid!=0 check is not implemented. Reset the bin
shell and you'll be fine.
Regards.
Fernando P. Schapachnik
Planificación de red y tecnología
VIA NET.WORKS ARGENTINA S.A.
fschapachnik@vianetworks.com.ar
Tel.: (54-11) 4323-3381
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010814134547.D6223>