pseudo (*not* system) users and /bin/false ?

Gerard Beekmans gerard at linuxfromscratch.org
Tue Dec 12 11:49:23 PST 2000


> So, would you say that it is an extra security precaution (good idea) to
> put /bin/false as shell for all pseudo users (bin, mail, ftp, etc...) on
> the system? Thanks for the feedback! :o)

Yep. Also, you can do something about their home directory too. I often write 
/no/where in the HOME field in combination with /bin/false as the shell 
field. 



-- 
Gerard Beekmans
www.linuxfromscratch.org

-*- If Linux doesn't have the solution, you have the wrong problem -*-





More information about the lfs-security mailing list