02-20-2007, 07:48 AM | #1 |
Junior Member
Join Date: Feb 2007
Posts: 26
|
Feature request -- ignore /bin/false shell users
On Gentoo, /bin/false is used as the default shell for non-users on a system. I would like those ignored as being legitiment users and also have /etc/shells called for those real users.
|
03-03-2007, 06:36 AM | #2 |
ISPsystem team
Join Date: Mar 2004
Posts: 98
|
ISPmanager ignore users with emtpy passwords. (or password field equal to '*' or '!' or '!!')
Usually it is system users. Could you show me password field of such users from your system (i told about /etc/shadow file, second field)
__________________
ISPsystem support team |
03-03-2007, 06:46 AM | #3 |
Junior Member
Join Date: Feb 2007
Posts: 26
|
Sure-
Code:
cat /etc/passwd root:x:0:0:root:/root:/bin/bash bin:x:1:1:bin:/bin:/bin/false daemon:x:2:2:daemon:/sbin:/bin/false adm:x:3:4:adm:/var/adm:/bin/false lp:x:4:7:lp:/var/spool/lpd:/bin/false sync:x:5:0:sync:/sbin:/bin/sync shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown halt:x:7:0:halt:/sbin:/sbin/halt mail:x:8:12:mail:/var/spool/mail:/bin/false news:x:9:13:news:/usr/lib/news:/bin/false uucp:x:10:14:uucp:/var/spool/uucppublic:/bin/false operator:x:11:0:operator:/root:/bin/bash man:x:13:15:man:/usr/man:/bin/false postmaster:x:14:12:postmaster:/var/spool/mail:/bin/false cron:x:16:16:cron:/var/spool/cron:/bin/false ftp:x:21:21::/home/ftp:/bin/false sshd:x:22:22:sshd:/dev/null:/bin/false at:x:25:25:at:/var/spool/cron/atjobs:/bin/false squid:x:31:31:Squid:/var/cache/squid:/bin/false gdm:x:32:32:GDM:/var/lib/gdm:/bin/false xfs:x:33:33:X Font Server:/etc/X11/fs:/bin/false games:x:35:35:games:/usr/games:/bin/false named:x:40:40:bind:/var/bind:/bin/false mysql:x:60:60:mysql:/var/lib/mysql:/bin/false msql:x:65:65:msql:/usr/local/msql3:/bin/false postgres:x:70:70::/var/lib/postgresql:/bin/bash www:x:81:81:apache:/etc/httpd:/bin/false nut:x:84:84:nut:/var/state/nut:/bin/false cyrus:x:85:12::/usr/cyrus:/bin/false smmsp:x:209:209:smmsp:/var/spool/mqueue:/bin/false portage:x:250:250:portage:/var/tmp/portage:/bin/false nobody:x:65534:65534:nobody:/:/bin/false clamav:x:101:12:ClamAV:/var/clamav:/bin/false spamd:x:108:12:Spamassassin:/var/spamd:/bin/false amavis:x:102:2005:added by portage for amavisd-new:/var/amavis:/bin/false nagios:x:103:2006:added by portage for nagios-plugins:/dev/null:/bin/bash proftpd:x:2008:407::/home/ftp:/bin/false distcc:x:240:2:distccd:/dev/null:/bin/false ntp:x:123:123:added by portage for ntp:/dev/null:/bin/false apache:x:104:2006:added by portage for apache:/var/www:/bin/false dovecot:x:97:97:added by portage for dovecot:/dev/null:/sbin/nologin ldap:x:439:439:added by portage for openldap:/usr/lib64/openldap:/sbin/nologin Code:
cat /etc/shadow halt:*:9797:0::::: operator:*:9797:0::::: shutdown:*:9797:0::::: sync:*:9797:0::::: bin:*:9797:0::::: ftp:*:9797:0::::: daemon:*:9797:0::::: adm:*:9797:0::::: lp:*:9797:0::::: mail:*:9797:0::::: postmaster:*:9797:0::::: news:*:9797:0::::: uucp:*:9797:0::::: man:*:9797:0::::: games:*:9797:0::::: nobody:*:9797:0::::: clamav:!:12820:0:99999:7::: cron:x:12820:0:99999:7::: sshd:x:12820:0:99999:7::: at:x:12820:0:99999:7::: squid:x:12820:0:99999:7::: gdm:x:12820:0:99999:7::: xfs:x:12820:0:99999:7::: named:x:12820:0:99999:7::: mysql:x:12820:0:99999:7::: postgres:x:12820:0:99999:7::: www:x:12820:0:99999:7::: nut:x:12820:0:99999:7::: cyrus:x:12820:0:99999:7::: smmsp:x:12820:0:99999:7::: portage:x:12820:0:99999:7::: amavis:!:12820:0:99999:7::: nagios:!:12822:0:99999:7::: proftpd:!:12846:0:99999:7::: distcc:!:12896:0:99999:7::: ntp:!:12943:0:99999:7::: apache:!:13027:0:99999:7::: spamd:!:13332:0:99999:7::: dovecot:!:13487:0:99999:7::: ldap:!:13502:0:99999:7::: The following users show up in ispsystem: Code:
Name Owner Preset Properties Bandwidth at root cron root cyrus root gdm root mysql root named root nut root portage root postgres root smmsp root squid root sshd root www root xfs |
03-03-2007, 07:00 AM | #5 | |
Junior Member
Join Date: Feb 2007
Posts: 26
|
Quote:
--- So I basically just change the x to a ! in /etc/shadow for those non-users and that seems to work. thanks |
|
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Feature request-site manager | raf_root4ce | Feedback & Feature Requests | 3 | 09-15-2006 02:11 PM |
Feature request | Guest | Feedback & Feature Requests | 3 | 08-27-2004 10:57 AM |