Mailinglist Archive: opensuse-security (211 mails)

< Previous Next >
Re: [suse-security] root has no shell
  • From: Bob Vickers <bobv@xxxxxxxxxxxxx>
  • Date: Thu, 9 Oct 2003 16:58:35 +0100 (BST)
  • Message-id: <Pine.OSF.4.58.0310091653590.18560@xxxxxxxxxxxxxxxxxxxxx>

It depends whether /bin/false is in /etc/shells or not. If you look at the
info page for su you see that an unprivileged user cannot use -s if the
original shell is restricted, i.e. not present in /etc/shells.

I don't know why some systems have /bin/false in /etc/shells and others
don't. It might depend on some security setting somewhere, or just on
whether the administrator has modified it.


On Thu, 9 Oct 2003, Anders Johansson wrote:

> On Wednesday 08 October 2003 15.47, Ulrich Kautz wrote:
> > su -s /bin/bash -c "command" -- "using restricted shell: /bin/false"
> su -s /bin/bash works for me, SuSE 8.2
> --
> Check the headers for your unsubscription address
> For additional commands, e-mail: suse-security-help@xxxxxxxx
> Security-related bug reports go to security@xxxxxxx, not here

Bob Vickers R.Vickers@xxxxxxxxxxxxx
Dept of Computer Science, Royal Holloway, University of London
Phone: +44 1784 443691

< Previous Next >