Skip site navigation (1)Skip section navigation (2)
Date:      Fri, 09 Jul 2004 07:46:57 +0200
From:      Jean-Pierre FORCIOLI <jean-pierre.forcioli@cyber-networks.fr>
To:        freebsd-security@freebsd.org
Subject:   Re: Root users shell == no existant shell /bin/bash
Message-ID:  <gJaN9-0407090734581727dUH2SRx1UcE336m0---3@glenan.cyber-networks.fr>
In-Reply-To: <20040709002231.U94008@doppelganger.el.ntu-kpi.kiev.ua>
References:  <!~!UENERkVCMDkAAQACAAAAAAAAAAAAAAAAABgAAAAAAAAAQalskDVfo0WQ/a0WxfyYA8KAAAAQAAAAHZLwubL1IEW8iaIucc4elAEAAAAA@ntscom.com> <20040709002231.U94008@doppelganger.el.ntu-kpi.kiev.ua>

Next in thread | Previous in thread | Raw E-Mail | Index | Archive | Help

--=-oLL4nkW6vSiHXSKQChCW
Content-Type: text/plain
Content-Transfer-Encoding: quoted-printable

On Thu, 2004-07-08 at 23:23, Taras Y. NIZHNIK wrote:
> On Thu, 8 Jul 2004, Brandon Grace wrote:
> > I made a mistake setting my shell and have set the root users shell to
> > /bin/bash instead of /bin/sh. I am curiuos if anyone knows how to fix t=
his.
> > The machines is FreeBSD 4.8-RELEASE-p4 and does not have sudo only su.
> How about 'su -m' ?

"su -m" will be a solution only if "/bin/bash" is a valid shell and the
caller is root :

  "The invoked shell is your login shell, and no directory changes are
   made. As a security precaution, if the target user's shell is a
   non-standard shell (as defined by getusershell(3)) and the caller's
   real uid is non-zero, su will fail."

But apparently, Brandon can't login anymore with "root" account because
"/bin/bash" doesn't exist (so isn't a valid shell...).

--=20
Jean-Pierre FORCIOLI		OpenPGP: 1024D/CF173713
Cyber Networks			http://www.cyber-networks.fr/
Tl : +33 (0)1 42 04 95 89	Fax : +33 (0)1 42 04 95 87

--=-oLL4nkW6vSiHXSKQChCW
Content-Type: application/pgp-signature; name=signature.asc
Content-Description: This is a digitally signed message part

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (FreeBSD)

iD8DBQBA7jFQaKwq8c8XNxMRAivrAJ4kIX759foMlTISJePcQ5wccee+iACgui6t
4ET+DgqT/rzCJ07J/vR1R2Y=
=Zh71
-----END PGP SIGNATURE-----

--=-oLL4nkW6vSiHXSKQChCW--



Want to link to this message? Use this URL: <http://docs.FreeBSD.org/cgi/mid.cgi?gJaN9-0407090734581727dUH2SRx1UcE336m0---3>