Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.2 9/18/84; site ucsfcgl.UUCP
Path: utzoo!watmath!clyde!burl!ulysses!ucbvax!ucsfcgl!arnold
From: arnold@ucsfcgl.UUCP (Ken Arnold%CGL)
Newsgroups: net.unix
Subject: Re: Alternate Shells
Message-ID: <621@ucsfcgl.UUCP>
Date: Fri, 23-Aug-85 01:36:20 EDT
Article-I.D.: ucsfcgl.621
Posted: Fri Aug 23 01:36:20 1985
Date-Received: Sat, 24-Aug-85 19:58:29 EDT
References: <10672@Glacier.ARPA> <575@bu-cs.UUCP> <615@ucsfcgl.UUCP> <782@brl-tgr.ARPA>
Reply-To: arnold@ucsfcgl.UUCP (Ken Arnold)
Organization: UCSF Computer Graphics Lab
Lines: 19

In article <782@brl-tgr.ARPA> gwyn@brl-tgr.ARPA (Doug Gwyn ) writes:
>> [explanation by me of why chsh is limited to two shells in order to avoid
>>  pranks being played on people in the bathroom, or wherever]
>
>But that doesn't help.  The prankster can always add something like
>	exec echo goodbye
>as the last line of a .profile (or .login) even if chsh never existed.
>The solution to unattended logged-in terminals is to not have any.

You can never convince people that if they just run off and relieve
themselves or get a candy bar that they can't just leave the terminal
alone (just for a second).  At least until somebody has screwed them
up at least once.  There are a large number of ways to mess up such
people, but even messing with a .profile can at least potentially be
bypassed by leaning on a repeating delete key as you log in, and hope
to interrupt processing of the .cshrc/.login/.profile file.  With
chsh pranks, you can (by definition) do nothing.

		Ken Arnold