Menu
▾
▴
Re: [Sqlgrey-users] Additional .spec suggestions (was Re: .spec missing /etc/sqlgrey/discrimination.regexp)
|
From: Dan F. <da...@ha...> - 2007-08-04 13:41:32
|
Dan Mason wrote: > Under FreeBSD 6 (the professional ISP OS) the shell is nologin. > > sqlgrey:*:1002:1002:Postgrey Owner:/usr/local/share/sqlgrey:/sbin/nologin > > Leave it to Linux to do things wrong. (flame on!) > *nix-religious ppl are funny ;) Bleh. Well.. Many times linux does use /bin/true or /bin/false (which practically does the same thing), but AFAIK makes little difference. The shadowfile contains '!' as password, thus no valid password can be entered. If a valid password COULD be entered, setting /sbin/nologin would do little to save you, as $ su <username> -s /bin/bash would bypass whatever defined in passwd. So i dont see /sbin/nologin hindering anything you cant do another way if you already have so much access that you can define a password for the user. So that said, sure i can make it put in /bin/true or whatever in the .spec file, because it DOES look neater. :) Ill stick it into CVS, but unless someone can convince me otherwise, i dont see it as a problem and wont make a new release based on this alone. - Dan |
