[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [suse-security] SHELL=/bin/false but user can still log in

Hollweg, Daniel wrote:
> If I enter /bin/false as login shell in the /etc/passwd the user
> can still login and gets shell access. After rebooting the system
> the shell entry in the /etc/passwd is processed correct and  a
> login attempt is closed as you would expect.

Does the "nscd" cache also the shell field from /etc/passwd? If so,
a "nscd reload" after changing the shell should prevent the user
from login after that command.

Have fun,

Check the headers for your unsubscription address
For additional commands, e-mail: suse-security-help@xxxxxxxx
Security-related bug reports go to security@xxxxxxx, not here