HP3000-L Archives

July 2003, Week 4

HP3000-L@RAVEN.UTC.EDU
Options: Use Monospaced Font
Show Text Part by Default
Show All Mail Headers

Message: [<< First] [< Prev] [Next >] [Last >>]
Topic: [<< First] [< Prev] [Next >] [Last >>]
Author: [<< First] [< Prev] [Next >] [Last >>]

Print Reply
Subject:
Re: Blocking the Shell
From:
Lars Appel <[log in to unmask]>
Reply To:
Lars Appel <[log in to unmask]>
Date:
Sat, 26 Jul 2003 16:03:31 +0200
Content-Type:
text/plain
Parts/Attachments:
text/plain (14 lines) 
> What's a good method for blocking access to the POSIX shell?

You might try using an ACD like in ALTSEC SH.HPBIN.SYS;NEWACD=(X:MANAGER.SYS).

Depending on your system's use of the Shell (don't forget about command files
or batch jobs that might be using it for "little tricks", sending kill signals
to stop certain server jobs, etc) you might need to grant eXecute access to
more than just manager.sys (which would override the ACD due to SM anyway).

Also keep in mind that an OS update or patch might remove the ACD.

* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *

ATOM RSS1 RSS2