From owner-freebsd-security@FreeBSD.ORG Fri Jul 9 20:38:50 2004 Return-Path: Delivered-To: freebsd-security@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 62AB016A4CE for ; Fri, 9 Jul 2004 20:38:50 +0000 (GMT) Received: from bast.unixathome.org (bast.unixathome.org [66.11.174.150]) by mx1.FreeBSD.org (Postfix) with ESMTP id 2D08043D66 for ; Fri, 9 Jul 2004 20:38:50 +0000 (GMT) (envelope-from dan@langille.org) Received: from wocker (wocker.unixathome.org [192.168.0.99]) by bast.unixathome.org (Postfix) with ESMTP id 40A773D34; Fri, 9 Jul 2004 16:38:49 -0400 (EDT) From: "Dan Langille" To: Daniel Brown Date: Fri, 09 Jul 2004 16:38:49 -0400 MIME-Version: 1.0 Message-ID: <40EECA19.3925.EDD9BBEB@localhost> Priority: normal X-mailer: Pegasus Mail for Windows (v4.12a) Content-type: text/plain; charset=US-ASCII Content-transfer-encoding: 7BIT Content-description: Mail message body cc: freebsd-security@freebsd.org Subject: bash as a login shell (was Root users shell == no existant shell /bin/bash) X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Security issues [members-only posting] List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 09 Jul 2004 20:38:50 -0000 On 9 Jul 2004 at 13:11, Daniel Brown wrote: > On the other hand, I've run across a sysadmin who always enables his > toor accounts -- and changes its shell to bash. As a result, not only > is there an alternate root account (good in case 'root' trampled on by > accident or purpose), but you can get root bash as a login shell while > leaving the real root to its normal shell. This make it sound like you find it very bothersome to login and type 'bash' (or whatever), to give yourself the shell you want. Is that so? -- Dan Langille : http://www.langille.org/