[PATCH] Re: restricted shell
Andrew Bartlett
abartlet at pcug.org.au
Tue May 1 00:23:38 EST 2001
Markus Friedl wrote:
>
> > Actualy, no. Presuming that cvs-web is openssh-current, we still use
> > /bin/sh to execute the user's sshrc. I allow my users a restricted
> > shell (taint-mode enabled perl script) that lets them do things like
> > change their password, so this kind of matters. I also allow them sftp
> > access.
>
> yes, i remember. i'm not sure what to do.
>
> executing the LOGIN shell for .ssh/sshrc will break
> old installations...
But you could chain: login-shell -> /bin/sh/ -> sshrc could you not?
--
Andrew Bartlett
abartlet at pcug.org.au
More information about the openssh-unix-dev
mailing list