Bug 70414 - /etc/shells misses some shells and lists /sbin/nologin
/etc/shells misses some shells and lists /sbin/nologin
Status: CLOSED NOTABUG
Product: Red Hat Linux
Classification: Retired
Component: setup (Show other bugs)
7.3
i686 Linux
medium Severity medium
: ---
: ---
Assigned To: Bill Nottingham
David Lawrence
:
: 230650 (view as bug list)
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 2002-08-01 03:54 EDT by Tomasz Kepczynski
Modified: 2014-03-16 22:29 EDT (History)
2 users (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 2002-08-01 03:54:48 EDT
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Tomasz Kepczynski 2002-08-01 03:54:43 EDT
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020513

Description of problem:
On my PC at least tcsh, csh and ash are missing from /etc/shells file and this
prevents users from ftp login. As far as I remember this change was not
documented in release notes.
Additionally /sbin/nologin is listed as valid shell which I believe is incorrect
and security risk, unless it is there specifically to allow ftp accounts only.

Version-Release number of selected component (if applicable):


How reproducible:
Always

Steps to Reproduce:
Not relevant	

Additional info:
Comment 1 Bill Nottingham 2002-08-12 15:11:48 EDT
Other shells are added in their %post, and /sbin/nologin is intentional.
Comment 2 Phil Knirsch 2007-05-24 09:23:43 EDT
*** Bug 230650 has been marked as a duplicate of this bug. ***
Comment 3 Jan "Yenya" Kasprzak 2007-05-24 09:44:49 EDT
OK then, either the shells(5) manpage should be changed to reflect the fact that
[not] having a shell listed in /etc/shells is no longer a valid criteria for
distinguishing between ordinary users and pseudo users, 

or (better) there should be a hard-linked copy of /sbin/nologin (say
/sbin/nologin-noshells), and system accounts should be changed to have this
shell instead.

I have the following pseudo-accounts with /sbin/nologin shell:

bin daemon adm lp mail uucp operator games gopher ftp nobody rpm vcsa sshd rpc
rpcuser nfsnobody mailnull smmsp pcap radvd postfix dbus haldaemon named nscd

Note You need to log in before you can comment on or make changes to this bug.