Solved

How to get restricted shell to work in Trusted Extensions

Posted on 2014-02-11
4
224 Views
Last Modified: 2014-04-22
Hi,

 I am trying to limited access within a shell  for general users on a Solaris 10 Trusted Extensions box. I have tested this by changing the shell for a test user within /etc/passwd from /bin/sh to /usr/lib/rsh as well as rbash and rksh. Unfortunately when i try to login the system just kicks me back the log on screen. I have been able to login with the default shell and while in a zone type #rbash /rsh /rksh and successfully test that the restricted shell is working but i can not seems to login with the restricted shell. Any help would be greatly appreciated.

Thanks in advance.
0
Comment
Question by:mritwonderful
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 68

Expert Comment

by:woolmilkporc
ID: 39853154
I think you must add the desired shell to the list of allowed ones

/etc/shells

wmp
0
 

Author Comment

by:mritwonderful
ID: 39861526
wmp,

I'm using Solaris 10 Trusted Extension on a x64 SPARC system. I do not have an /etc/shells directory. Is this something I need to create or should this be there already.
0
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 500 total points
ID: 39861560
/etc/shells is not a directory but a file, containing the full paths to allowed shells, one per line.

If the file doesn't exist create it and retry.

You could also check the /etc/security directory, maybe the "shells" file is there now.

As you can see, I'm not a  "Trusted Extension" expert, but /etc/shells is pretty much standard in "normal" environments, so why not try it?
0
 

Author Comment

by:mritwonderful
ID: 39862184
Wmp,

Thanks for the quick response, its much appreciated. I will try this tomorrow when i get in.

Thanks again!
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Soundcloud.com 4 111
FTP server windows 2008 5 68
sed command 3 26
leap year shell script 10 50
No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
Container Orchestration platforms empower organizations to scale their apps at an exceptional rate. This is the reason numerous innovation-driven companies are moving apps to an appropriated datacenter wide platform that empowers them to scale at a …
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:

732 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question