[PATCH] prevent users from changing their environment
Tony Finch
dot at dotat.at
Sat Jul 27 08:20:30 EST 2002
On Fri, Jul 26, 2002 at 04:46:06PM +0200, Markus Friedl wrote:
>
> hm, sshd already suffers from far to many options.
Yes, and Unix authentication is too complicated :-(
> is making $HOME/.ssh unwriteable not an option?
Unfortunately not because there are too many ways for the users to make
it writable again (they can delete and create directories and files in
their home directories with ftp and scp and the menu system). We might
be able to lock things down more in a future version of the system,
but we're stuck with the way it is until then.
Thanks for being receptive.
Tony.
--
f.a.n.finch <dot at dotat.at> http://dotat.at/
SOUTH FITZROY: NORTH OR NORTHWEST 4, BUT 5 OR 6 SOUTH OF CAPE FINISTERRE.
FAIR. MODERATE OR GOOD.
More information about the openssh-unix-dev
mailing list