Mailing-List: contact cygwin-help AT cygwin DOT com; run by ezmlm
List-Subscribe: <mailto:cygwin-subscribe AT cygwin DOT com>
List-Archive: <http://sources.redhat.com/ml/cygwin/>
List-Post: <mailto:cygwin AT cygwin DOT com>
List-Help: <mailto:cygwin-help AT cygwin DOT com>, <http://sources.redhat.com/ml/#faqs>
Sender: cygwin-owner AT cygwin DOT com
Delivered-To: mailing list cygwin AT cygwin DOT com
To: cygwin AT cygwin DOT com
X-Injected-Via-Gmane: yes
Path: not-for-mail
From: Andrew DeFaria <Andrew AT DeFaria DOT com>
Newsgroups: gmane.os.cygwin
Subject: Re: login: no shell: /bin/bash: Permission denied
Date: Wed, 06 Mar 2002 11:12:11 -0800
Organization: Salira Optical Networks
Lines: 41
Message-ID: <3C866A0B.6040500@DeFaria.com>
References: <m3eliylhc2 DOT fsf AT appel DOT lilypond DOT org> <20020306101433 DOT P13590 AT cygbert DOT vinschen DOT de>
NNTP-Posting-Host: 206.184.204.2
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
X-Trace: quimby2.netfonds.no 1015442361 32179 206.184.204.2 (6 Mar 2002 19:19:21 GMT)
X-Complaints-To: usenet AT quimby2 DOT netfonds DOT no
NNTP-Posting-Date: 6 Mar 2002 19:19:21 GMT
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:0.9.4) Gecko/20011019 Netscape6/6.2
X-Accept-Language: en-us

Corinna Vinschen wrote:


> No, it didn't work.  `who' isn't the right way to get your current
> user name, try `id'.  Basically, login is doing the following:
> 
>   execlp(pwd->pw_shell, tbuf, 0);
>   fprintf(stderr, "login: no shell: ");
>   perror(pwd->pw_shell);
>   exit(0);
> 
> So, if it couldn't execute the shell, it emits the above error
> message.
> 
> The problem you're seeing results from your inability to change
> the user context.  You can't do it, your account doesn't have the
> permission.  That's normal.  See /usr/doc/Cygwin/login.README.


You imply that somebody has the ability to change user context! If so 
then who is that somebody (USER)?

It's my understanding that the only thing(s) that use login are things 
like telnet/rlogin/rsh.

Frustrated by the lack of su(1M)!

Oh, BTW, here's a potential security problem:

$ rsh hosta id
uid=1370(adefaria) gid=513(Domain Users) groups=0(Everyone),512(Domain 
Admins),513(Domain 
Users),1170(Everybody),1382(ITSupport),1354(Operations),1331(Software)
$ rsh hosta -l otheruser id
uid=1269(otheruser) gid=513(Domain Users) groups=0(Everyone),513(Domain 
Users),1203(Engineering),1170(Everybody),2171(Product Team),1215(Service 
Group),1331(Software),1298(TDM Group)

How did I rsh as another user and not be prompted for a password?





--
Unsubscribe info:      http://cygwin.com/ml/#unsubscribe-simple
Bug reporting:         http://cygwin.com/bugs.html
Documentation:         http://cygwin.com/docs.html
FAQ:                   http://cygwin.com/faq/