This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
wiki:security:rbash [2014/11/01 09:24] woglinde [rbash short feature overview] |
wiki:security:rbash [2014/11/01 10:00] woglinde [Security concerns] |
||
---|---|---|---|
Line 93: | Line 93: | ||
</ | </ | ||
+ | ===== Security concerns ===== | ||
+ | There could be still problems to brake out of rbash, no one yet made a security audit of the linked x2go scripts, if they allow the execution of a real shell | ||
+ | via options. | ||
====== rbash as default shell (optional)====== | ====== rbash as default shell (optional)====== | ||
Line 98: | Line 101: | ||
to be fixed too. | to be fixed too. | ||
+ | In | ||
+ | <code bash> | ||
+ | / | ||
+ | </ | ||
+ | the lines with | ||
+ | |||
+ | <code bash> | ||
+ | system(" | ||
+ | </ | ||
+ | |||
+ | needs to be changed to | ||
+ | |||
+ | <code bash> | ||
+ | system(" | ||
+ | </ |