Work at SourceForge, help us to make it a better place! We have an immediate need for a Support Technician in our San Francisco or Denver office.

Close

#3170 SCPOnly User can change shell to non secure one.

closed-fixed
Jamie Cameron
8
2008-07-29
2008-07-29
Trevor Sacks
No

I was playing around today when I noticed that a test user I had set up, was fully capable of modifying their shell from /usr/sbin/scponlyc, which jails them to their home directory, to /bin/bash, which allows them to do anything. this is a significant security risk.

All a user has to do is to log in, go to Login -> Change user Details, and is instantly provided a pass to system security.

I felt that this was a significant security risk. If there's some way to prevent this through permissions, it should be documented. If not, then it should have an option to remove it.

Discussion

  • Trevor Sacks
    Trevor Sacks
    2008-07-29

    • priority: 5 --> 8
     
  • Jamie Cameron
    Jamie Cameron
    2008-07-29

    • status: open --> closed-fixed
     
  • Jamie Cameron
    Jamie Cameron
    2008-07-29

    Logged In: YES
    user_id=129364
    Originator: NO

    You can control if users are allowed to change their shells in Usermin.
    Just login to Webmin, and go to Webmin -> Usermin Configuration -> Usermin Module Configuration -> Change User Details, and set 'Can change shell?' to 'No'.

     
  • Jamie Cameron
    Jamie Cameron
    2008-07-29

    Logged In: YES
    user_id=129364
    Originator: NO

    You can control if users are allowed to change their shells in Usermin.
    Just login to Webmin, and go to Webmin -> Usermin Configuration -> Usermin Module Configuration -> Change User Details, and set 'Can change shell?' to 'No'.