[Bug 3142] ProxyCommand should be interpreted by a fixed shell like /bin/sh .
bugzilla-daemon at mindrot.org
bugzilla-daemon at mindrot.org
Tue Mar 31 12:06:27 AEDT 2020
https://bugzilla.mindrot.org/show_bug.cgi?id=3142
--- Comment #4 from Darren Tucker <dtucker at dtucker.net> ---
(In reply to Tetsuo Handa from comment #3)
> I don't think that ProxyCommand is subjected to restricted shells,
> for the shell used for interpreting ProxyCommand is currently
> controllable by $SHELL environment variable.
Restricted shells usually don't let you set $SHELL for exactly this
reason, eg:
https://www.gnu.org/software/bash/manual/html_node/The-Restricted-Shell.html
"""
A restricted shell behaves identically to bash with the exception that
the following are disallowed or not performed:
[...]
Setting or unsetting the values of the SHELL, PATH, ENV, or BASH_ENV
variables.
"""
--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
More information about the openssh-bugs
mailing list