On Mon, 25 Nov 2002 22:34, H. S. Teoh wrote: > > > Possibly because otherwise, you cannot run any shell scripts as that > > > user. (This may also apply to more than shell scripts, but I'm not sure > > > about that.) > > > > sudo, start-stop-daemon, su -s > > > > Why can't people read man pages before replying? > > [snip] > > But there are programs that don't use su -s. E.g., custom logins > (non-anonymous) from wu-ftpd will fail if the login shell is set to > /bin/false. This, of course, is probably a bug, but I suspect a lot of > things will break if (some) system users have no shell.
Try it out. You'll find that very little breaks, and most of that can be fixed by a few one-line changes to scripts. -- http://www.coker.com.au/selinux/ My NSA Security Enhanced Linux packages http://www.coker.com.au/bonnie++/ Bonnie++ hard drive benchmark http://www.coker.com.au/postal/ Postal SMTP/POP benchmark http://www.coker.com.au/~russell/ My home page
