Red Hat Bugzilla – Bug 1277219
nologin is included in /etc/shells
Last modified: 2015-11-06 08:51:33 EST
Description of problem:
/etc/shells contains /sbin/nologin and /usr/sbin/nologin . By including these, it is possible to switch to such user with 'su' command with login override. That behaviour is not intuitive result of setting nologin for a user.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
1. grep nologin /etc/shells
Thanks for information, however, you are not the first one reporting it. See e.g. https://bugzilla.redhat.com/show_bug.cgi?id=70414 , https://bugzilla.redhat.com/show_bug.cgi?id=230650.
Actually, /sbin/nologin was added as request by https://bugzilla.redhat.com/show_bug.cgi?id=53963 . I believe, without further discussion, this has to be closed not a bug. Feel free to discuss potential risk caused by this /etc/shells entry on fedora devel list and add a pointer to the mail thread into this bugzilla. Without further discussion, I will close this request NOTABUG.
Thanks Ondrej for the clarification, sorry for my weak search-fu. I agree we can close it for now.
I will just put here, for future reference, another bug related to this... https://bugzilla.redhat.com/show_bug.cgi?id=1218302
Ok, thanks for annother cross-component bugzilla reference. Closing NOTABUG for now.