changing 'nobody' shell to /bin/bash
Michael Hipp
Michael
Mon May 17 11:56:46 PDT 2004
Net Llama! wrote:
> Does anyone have any concrete reasons or examples of why changing the user
> 'nobody''s shell to /bin/bash would be a bad idea? I've googled a bit and
> can't find anything concrete. thanks.
From my reading, the reason is that "nobody" is used as the default
user/group for lots of relatively insecure services (Samba being one
that comes to mind). So giving it a shell makes a compromise that much
more dangerous.
That and the general rule that "special" accounts should never have a shell.
Michael
More information about the Linux-users
mailing list