In article <[EMAIL PROTECTED]> you wrote: > Out of curiosity, what security benefit does a shell of /bin/false grant, > that say, an encrypted password of "NOLOGIN" (or equivalently "*") does not > grant?
Two things, first it is more obvious from reading the password file (and therefore also avoids someone sneakyly enable those accounts (would you notice?)) and secondly some other programs like ftp treat accounts with shells which are in /etc/shells better than others. And again it is a matter of "not granting priveledges where not needed". Greetings Bernd
