Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

How to get restricted shell to work in Trusted Extensions

Posted on 2014-02-11
4
Medium Priority
?
227 Views
Last Modified: 2014-04-22
Hi,

 I am trying to limited access within a shell  for general users on a Solaris 10 Trusted Extensions box. I have tested this by changing the shell for a test user within /etc/passwd from /bin/sh to /usr/lib/rsh as well as rbash and rksh. Unfortunately when i try to login the system just kicks me back the log on screen. I have been able to login with the default shell and while in a zone type #rbash /rsh /rksh and successfully test that the restricted shell is working but i can not seems to login with the restricted shell. Any help would be greatly appreciated.

Thanks in advance.
0
Comment
Question by:mritwonderful
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 68

Expert Comment

by:woolmilkporc
ID: 39853154
I think you must add the desired shell to the list of allowed ones

/etc/shells

wmp
0
 

Author Comment

by:mritwonderful
ID: 39861526
wmp,

I'm using Solaris 10 Trusted Extension on a x64 SPARC system. I do not have an /etc/shells directory. Is this something I need to create or should this be there already.
0
 
LVL 68

Accepted Solution

by:
woolmilkporc earned 1500 total points
ID: 39861560
/etc/shells is not a directory but a file, containing the full paths to allowed shells, one per line.

If the file doesn't exist create it and retry.

You could also check the /etc/security directory, maybe the "shells" file is there now.

As you can see, I'm not a  "Trusted Extension" expert, but /etc/shells is pretty much standard in "normal" environments, so why not try it?
0
 

Author Comment

by:mritwonderful
ID: 39862184
Wmp,

Thanks for the quick response, its much appreciated. I will try this tomorrow when i get in.

Thanks again!
0

Featured Post

Put Machine Learning to Work--Protect Your Clients

Machine learning means Smarter Cybersecurity™ Solutions.
As technology continues to advance, managing and analyzing massive data sets just can’t be accomplished by humans alone. It requires huge amounts of memory and storage, as well as high-speed processing of the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Attention: This article will no longer be maintained. If you have any questions, please feel free to mail me. jgh@FreeBSD.org Please see http://www.freebsd.org/doc/en_US.ISO8859-1/articles/freebsd-update-server/ for the updated article. It is avail…
Security measures require Windows be logged in using Standard User login (not Administrator).  Yet, sometimes an application has to be run “As Administrator” from a Standard User login.  This paper describes how to create a shortcut icon to launch a…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to navigate the file tree with the shell. Use pwd to print the current working directory: Use ls to list a directory's contents: Use cd to change to a new directory: Use wildcards instead of typing out long directory names: Use ../ to move…
Suggested Courses

636 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question