Return to BSD News archive
#! rnews 1424 bsd Path: euryale.cc.adfa.oz.au!newshost.anu.edu.au!harbinger.cc.monash.edu.au!simtel!vtc.tacom.army.mil!agis!usenet.eel.ufl.edu!tank.news.pipex.net!pipex!news.mathworks.com!newsfeed.internetmci.com!EU.net!Germany.EU.net!Dortmund.Germany.EU.net!interface-business.de!not-for-mail From: j@interface-business.de (J Wunsch) Newsgroups: comp.unix.bsd.bsdi.misc Subject: Re: Menu instead of prompt Date: 2 Nov 1995 18:47:04 +0100 Organization: interface business GmbH, Dresden Lines: 17 Message-ID: <47b06o$fsp@ida.interface-business.de> References: <DH2IMz.7CA@westonia.com> <46u03c$o6n@pegasus.starlink.com> NNTP-Posting-Host: ida.interface-business.de Alan Schneider <alschnei@starlink.com> wrote: >Yes. First, you need to write or get a menu script. If you want I >can forward the one my users are getting when they log in. Then, in >their .profile, you need to append the statement that loads it. For >example, I always put a statement like Be careful. Starting a shell for a user is opening up a can of worms security-wise. The least you should do is putting a `trap' statement as the very first line in the ~/.profile, but even then you cannot be sure that a brute-force attack of continued INTR characters right after sending the password won't drop the user into a regular shell prompt. -- J"org Wunsch Unix support engineer joerg_wunsch@interface-business.de [private: http://www.sax.de/~joerg/]