On 29 September 2016 at 21:58, Kevin Kofler <kevin.kofler@xxxxxxxxx> wrote: > Stephen John Smoogen wrote: >> Well that boat sailed in 2001... so have you been removing it from >> your /etc/shells in the last 15 years? > > No, because I was not aware that Fedora had been shipping with this security > hole for 15 years! Of course I immediately fixed it upon reading this > thread. > But did you fix it? Does removing it from /etc/shells stop the su - -s/bin/bash <accountname>? [Because it doesn't seem to] Did removing it fix any of the other concerns you had? > Kevin Kofler > _______________________________________________ > devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx > To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx -- Stephen J Smoogen. _______________________________________________ devel mailing list -- devel@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to devel-leave@xxxxxxxxxxxxxxxxxxxxxxx
