Solved

How to get restricted shell to work in Trusted Extensions

Posted on 2014-02-11
4
220 Views
Last Modified: 2014-04-22
Hi,

 I am trying to limited access within a shell  for general users on a Solaris 10 Trusted Extensions box. I have tested this by changing the shell for a test user within /etc/passwd from /bin/sh to /usr/lib/rsh as well as rbash and rksh. Unfortunately when i try to login the system just kicks me back the log on screen. I have been able to login with the default shell and while in a zone type #rbash /rsh /rksh and successfully test that the restricted shell is working but i can not seems to login with the restricted shell. Any help would be greatly appreciated.

Thanks in advance.
0
Comment
Question by:mritwonderful
  • 2
  • 2
4 Comments
 
LVL 68

Expert Comment

by:woolmilkporc
ID: 39853154
I think you must add the desired shell to the list of allowed ones

/etc/shells

wmp
0
 

Author Comment

by:mritwonderful
ID: 39861526
wmp,

I'm using Solaris 10 Trusted Extension on a x64 SPARC system. I do not have an /etc/shells directory. Is this something I need to create or should this be there already.
0
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 500 total points
ID: 39861560
/etc/shells is not a directory but a file, containing the full paths to allowed shells, one per line.

If the file doesn't exist create it and retry.

You could also check the /etc/security directory, maybe the "shells" file is there now.

As you can see, I'm not a  "Trusted Extension" expert, but /etc/shells is pretty much standard in "normal" environments, so why not try it?
0
 

Author Comment

by:mritwonderful
ID: 39862184
Wmp,

Thanks for the quick response, its much appreciated. I will try this tomorrow when i get in.

Thanks again!
0

Featured Post

U.S. Department of Agriculture and Acronis Access

With the new era of mobile computing, smartphones and tablets, wireless communications and cloud services, the USDA sought to take advantage of a mobilized workforce and the blurring lines between personal and corporate computing resources.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

SHARE your personal details only on a NEED to basis. Take CHARGE and SECURE your IDENTITY. How do I then PROTECT myself and stay in charge of my own Personal details (and) - MY own WAY...
Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.

895 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

14 Experts available now in Live!

Get 1:1 Help Now