wiki:security:rbash
Differences
This shows you the differences between two versions of the page.
| Both sides previous revision Previous revision Next revision | Previous revision | ||
|
wiki:security:rbash [2014/11/01 09:27] woglinde [rbash as default shell (optional)] |
wiki:security:rbash [2014/11/03 13:07] (current) woglinde [rbash as default shell (optional)] |
||
|---|---|---|---|
| Line 9: | Line 9: | ||
| and hard to setup correctly. Another option is the use of rbash, but with the current state of x2go-server there | and hard to setup correctly. Another option is the use of rbash, but with the current state of x2go-server there | ||
| are serval steps so setup it up working correctly. | are serval steps so setup it up working correctly. | ||
| + | |||
| + | This guide is focused on a single application approach, no audio, remote/ | ||
| ====== rbash short feature overview ====== | ====== rbash short feature overview ====== | ||
| Line 93: | Line 95: | ||
| </ | </ | ||
| - | ====== rbash as default shell (optional)====== | + | ===== Security concerns |
| + | There could be still problems to brake out of rbash, no one yet made a security audit of the linked x2go scripts, if they allow the execution of a real shell | ||
| + | via options. | ||
| - | If rbash is also set as the default shell via /etc/passwd or some other mechanism, the sessioncleanup skripts needs | ||
| - | to be fixed too. | ||
| - | |||
| - | In | ||
| - | <code bash> | ||
| - | / | ||
| - | </ | ||
| - | |||
| - | the lines with | ||
| - | |||
| - | <code bash> | ||
| - | system(" | ||
| - | </ | ||
| - | |||
| - | needs to be changed to | ||
| - | |||
| - | <code bash> | ||
| - | system(" | ||
| - | </ | ||
wiki/security/rbash.1414834038.txt.gz · Last modified: 2014/11/01 09:27 by woglinde
Imprint & Legal Disclaimer -
Data Protection & Privacy Statement
Except where otherwise noted, content on this wiki is licensed under the following license: GNU Free Documentation License 1.3