Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.2 9/18/84; site brl-tgr.ARPA
Path: utzoo!watmath!clyde!burl!ulysses!allegra!mit-eddie!genrad!panda!talcott!harvard!seismo!brl-tgr!gwyn
From: gwyn@brl-tgr.ARPA (Doug Gwyn )
Newsgroups: net.unix
Subject: Re: Alternate Shells
Message-ID: <782@brl-tgr.ARPA>
Date: Sun, 18-Aug-85 16:10:30 EDT
Article-I.D.: brl-tgr.782
Posted: Sun Aug 18 16:10:30 1985
Date-Received: Tue, 20-Aug-85 21:40:02 EDT
References: <10672@Glacier.ARPA> <575@bu-cs.UUCP> <615@ucsfcgl.UUCP>
Organization: Ballistic Research Lab
Lines: 12

> I helped make this decision -- it was because people who left their
> terminals unattended for a few minutes (to relieve themselves, say)
> would find themselves with a strange shell the next time they logged
> on.  This kind of prank became such a pain (besides being virtually
> unfixable without finding a super-user, a species of (alleged) person
> not always available when you have an assigment due the next morning)
> that we decided to turn off chsh to non-normal shells except for root.

But that doesn't help.  The prankster can always add something like
	exec echo goodbye
as the last line of a .profile (or .login) even if chsh never existed.
The solution to unattended logged-in terminals is to not have any.