Using /bin/sh to exec subsystems [PATCH]

Markus Friedl Markus.Friedl at informatik.uni-erlangen.de
Sat May 26 01:33:29 EST 2001


On Thu, May 24, 2001 at 12:33:46PM -0600, Patrick Higgins wrote:
> I've gone ahead and written the code to allow subsystems to always be
> run with the Bourne shell instead of the user's shell, thus allowing
> user's with invalid shells to be able to use sftp (but not ssh, because
> their shell is invalid). The patch is attached.

i don't like this and i don't this this is very useful.

the only thing i'm thinking about is an option for

	run subsystems without any shell.

however, i'm afraid of skipping the login-shell, since it's
used (or abused) for access control on many systems (e.g. setting
the loginshell to /bin/false).

-m



More information about the openssh-unix-dev mailing list