[275] in linux-security and linux-alert archive
+:*:0:0:::/bin/false does not work. Why?
daemon@ATHENA.MIT.EDU (Konstantin Beznosov)
Thu Jul 6 16:17:39 1995
Date: Thu, 06 Jul 95 10:54:18 -0400
From: Konstantin Beznosov <beznosov@dizzy.fiu.edu>
To: linux-security@tarsier.cv.nrao.edu, beznosov@fiu.edu
I run Linux 1.2.3 slackware distribution. NIS (or NYS :) stuff comes with the
distribution (n* diskets/subdirs).
I found out that if I put a record
+:*:0:0:::/bin/false
in /etc/passwd to be able authorize users but do not allow them to log into the
system ( i need it for some server authorization), it looks like the record
does
not work:
The user can log in to the system and the fact that the user should have login
shell /bin/false is ignored.
Also, if i put something like "/dev/null" into homdir field, the field is
ignored as well.
The most interesting thing is that if I make light change and put any user:
+userfoo:*:0:0:::/bin/false
it works just fine: userfoo gets authorized but gets kicked out from the host.
What can I do about it? Is it bug or I don't understand something in NIS/Linux?
Answers will be appreciated.
K
