[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: restricted shell allows escape to child
From: |
Chet Ramey |
Subject: |
Re: restricted shell allows escape to child |
Date: |
Thu, 02 Oct 2003 09:49:35 -0400 |
User-agent: |
Mozilla/5.0 (X11; U; FreeBSD i386; en-US; rv:1.4) Gecko/20030729 |
Pete Nesbitt wrote:
Machine Type: i686-pc-linux-gnu
Bash Version: 2.05b
Patch Level: 0
Release Status: release
Description:
When using 'bash -r' or 'set -r' in .bashrc the user can call another
shell and the restrictions such as 'cd' no longer apply until you exit the
new shell and return to the restricted environment. When a second shell is
called the restrictions fail (I though calling bash by name (not a sym link)
was working but now even that allows an escape. This may be specific to Red
Hat 8 and may be a problem with their compiled rpm, but I felt it is
important.
It is incumbent on the system administrator to make sure that the PATH is
set appropriately when a restricted shell is run.
Using `bash -r' or `set -r' in .bashrc is probably not the best way to
start a
restricted shell; use `rbash' as the login shell instead.
Chet
[Prev in Thread] |
Current Thread |
[Next in Thread] |
- Re: restricted shell allows escape to child,
Chet Ramey <=