PDA

View Full Version : Feature request -- ignore /bin/false shell users


apryan
02-20-2007, 07:48 AM
On Gentoo, /bin/false is used as the default shell for non-users on a system. I would like those ignored as being legitiment users and also have /etc/shells called for those real users.

Igor
03-03-2007, 06:36 AM
ISPmanager ignore users with emtpy passwords. (or password field equal to '*' or '!' or '!!')
Usually it is system users.

Could you show me password field of such users from your system (i told about /etc/shadow file, second field)

apryan
03-03-2007, 06:46 AM
Sure-


cat /etc/passwd
root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/bin/false
daemon:x:2:2:daemon:/sbin:/bin/false
adm:x:3:4:adm:/var/adm:/bin/false
lp:x:4:7:lp:/var/spool/lpd:/bin/false
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/bin/false
news:x:9:13:news:/usr/lib/news:/bin/false
uucp:x:10:14:uucp:/var/spool/uucppublic:/bin/false
operator:x:11:0:operator:/root:/bin/bash
man:x:13:15:man:/usr/man:/bin/false
postmaster:x:14:12:postmaster:/var/spool/mail:/bin/false
cron:x:16:16:cron:/var/spool/cron:/bin/false
ftp:x:21:21::/home/ftp:/bin/false
sshd:x:22:22:sshd:/dev/null:/bin/false
at:x:25:25:at:/var/spool/cron/atjobs:/bin/false
squid:x:31:31:Squid:/var/cache/squid:/bin/false
gdm:x:32:32:GDM:/var/lib/gdm:/bin/false
xfs:x:33:33:X Font Server:/etc/X11/fs:/bin/false
games:x:35:35:games:/usr/games:/bin/false
named:x:40:40:bind:/var/bind:/bin/false
mysql:x:60:60:mysql:/var/lib/mysql:/bin/false
msql:x:65:65:msql:/usr/local/msql3:/bin/false
postgres:x:70:70::/var/lib/postgresql:/bin/bash
www:x:81:81:apache:/etc/httpd:/bin/false
nut:x:84:84:nut:/var/state/nut:/bin/false
cyrus:x:85:12::/usr/cyrus:/bin/false
smmsp:x:209:209:smmsp:/var/spool/mqueue:/bin/false
portage:x:250:250:portage:/var/tmp/portage:/bin/false
nobody:x:65534:65534:nobody:/:/bin/false
clamav:x:101:12:ClamAV:/var/clamav:/bin/false
spamd:x:108:12:Spamassassin:/var/spamd:/bin/false
amavis:x:102:2005:added by portage for amavisd-new:/var/amavis:/bin/false
nagios:x:103:2006:added by portage for nagios-plugins:/dev/null:/bin/bash
proftpd:x:2008:407::/home/ftp:/bin/false
distcc:x:240:2:distccd:/dev/null:/bin/false
ntp:x:123:123:added by portage for ntp:/dev/null:/bin/false
apache:x:104:2006:added by portage for apache:/var/www:/bin/false
dovecot:x:97:97:added by portage for dovecot:/dev/null:/sbin/nologin
ldap:x:439:439:added by portage for openldap:/usr/lib64/openldap:/sbin/nologin


cat /etc/shadow
halt:*:9797:0:::::
operator:*:9797:0:::::
shutdown:*:9797:0:::::
sync:*:9797:0:::::
bin:*:9797:0:::::
ftp:*:9797:0:::::
daemon:*:9797:0:::::
adm:*:9797:0:::::
lp:*:9797:0:::::
mail:*:9797:0:::::
postmaster:*:9797:0:::::
news:*:9797:0:::::
uucp:*:9797:0:::::
man:*:9797:0:::::
games:*:9797:0:::::
nobody:*:9797:0:::::
clamav:!:12820:0:99999:7:::
cron:x:12820:0:99999:7:::
sshd:x:12820:0:99999:7:::
at:x:12820:0:99999:7:::
squid:x:12820:0:99999:7:::
gdm:x:12820:0:99999:7:::
xfs:x:12820:0:99999:7:::
named:x:12820:0:99999:7:::
mysql:x:12820:0:99999:7:::
postgres:x:12820:0:99999:7:::
www:x:12820:0:99999:7:::
nut:x:12820:0:99999:7:::
cyrus:x:12820:0:99999:7:::
smmsp:x:12820:0:99999:7:::
portage:x:12820:0:99999:7:::
amavis:!:12820:0:99999:7:::
nagios:!:12822:0:99999:7:::
proftpd:!:12846:0:99999:7:::
distcc:!:12896:0:99999:7:::
ntp:!:12943:0:99999:7:::
apache:!:13027:0:99999:7:::
spamd:!:13332:0:99999:7:::
dovecot:!:13487:0:99999:7:::
ldap:!:13502:0:99999:7:::



The following users show up in ispsystem:
Name Owner Preset Properties Bandwidth
at root
cron root
cyrus root
gdm root
mysql root
named root
nut root
portage root
postgres root
smmsp root
squid root
sshd root
www root
xfs

Igor
03-03-2007, 06:56 AM
I told you about /etc/shadow
but you show me /etc/passwd

apryan
03-03-2007, 07:00 AM
I told you about /etc/shadow
but you show me /etc/passwd
Sorry, I misunderstood your english.

--- So I basically just change the x to a ! in /etc/shadow for those non-users and that seems to work.

thanks