re: scp and sftp

To: debian-security@lists.debian.org
Subject: re: scp and sftp
From: Jon McCain <jmccain@davlong.com>
Date: Mon, 01 Apr 2002 10:35:35 -0500
Message-id: <[🔎] 3CA87E47.706DC842@davlong.com>

All of this has gotten me to thinking about another flaw in the way I
have things set up.  I'm preventing users from getting to a $ by running
a menu from their profile.

exec /usr/bin/menu

This works fine since the exec causes menu to become their shell
process.

But some smart user could get around this by using pscp to upload their
own .bash_profile.  Even if I fix it so I have them chroot'd on their
home would not prevent this since this file is in their home.

But changing permissions on the .bash_profile so they don't own it (and
not in their group) should take care of that problem.  They can read it
all they want, just not change it.


-- 
To UNSUBSCRIBE, email to debian-security-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org

Reply to:

Follow-Ups:
- Re: scp and sftp
  - From: Chris Reeves <chris.reeves@iname.com>
- Re: scp and sftp
  - From: Rob VanFleet <rvf@linux.wku.edu>
- Re: scp and sftp
  - From: Stelios Bounanos <sb@dial.pipex.com>

Prev by Date: Re: scp and sftp
Next by Date: Re: scp and sftp
Previous by thread: re: scp and sftp
Next by thread: Re: scp and sftp
Index(es):
- Date
- Thread