Red Hat Bugzilla – Bug 70414
/etc/shells misses some shells and lists /sbin/nologin
Last modified: 2014-03-16 22:29:34 EDT
From Bugzilla Helper:
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9) Gecko/20020513
Description of problem:
On my PC at least tcsh, csh and ash are missing from /etc/shells file and this
prevents users from ftp login. As far as I remember this change was not
documented in release notes.
Additionally /sbin/nologin is listed as valid shell which I believe is incorrect
and security risk, unless it is there specifically to allow ftp accounts only.
Version-Release number of selected component (if applicable):
Steps to Reproduce:
Other shells are added in their %post, and /sbin/nologin is intentional.
*** Bug 230650 has been marked as a duplicate of this bug. ***
OK then, either the shells(5) manpage should be changed to reflect the fact that
[not] having a shell listed in /etc/shells is no longer a valid criteria for
distinguishing between ordinary users and pseudo users,
or (better) there should be a hard-linked copy of /sbin/nologin (say
/sbin/nologin-noshells), and system accounts should be changed to have this
I have the following pseudo-accounts with /sbin/nologin shell:
bin daemon adm lp mail uucp operator games gopher ftp nobody rpm vcsa sshd rpc
rpcuser nfsnobody mailnull smmsp pcap radvd postfix dbus haldaemon named nscd