Path: utzoo!utgpu!attcan!uunet!husc6!bloom-beacon!mit-eddie!killer!mjbtn!raider!root From: root@raider.UUCP (Bob Reineri) Newsgroups: comp.unix.xenix Subject: Security Keywords: Security Message-ID: <4@raider.UUCP> Date: 14 Aug 88 15:24:52 GMT Organization: RaiderNet Public Access, Murfreesboro, TN Lines: 24 I am rapidly finding out that running a public access system is a security nightmare. I am currently having a couple of problems :-), perhaps someone may be able to help. I would like to give folks access to vnews and elm via a restricted shell. I have dutifully set up a 'restricted' bin directory containing just a few commands, like vi, vnews, readnews, who, cat; I set all restricted users PATH to this directory only. Here's the rub: They can use shell commands from within either vnews of vi and do anything their heart desires (within normal system security, of course). Well, this just won't work ! I know there is a 'red' editor, but I hate to confine them to that. Does anyone have a solution for me ? Am I trying to do this the wrong way ? Bob -- ______ / / RaiderNet Public Access - Node 2 (Xenix) (615) 896-8716 /_____/ ___ o ___ ___ ___ * Murfreesboro, Tennessee * / \ /__/ / / / /__ /__/ * Middle Tennessee's Gate * _/ \___/ /__/__/__/__/__ __/ \_ * Node 1 (615) 896-7905 (DOS)* UUCP: !{ames,osu-cis,rutgers,decwrl,mit-eddie}!killer!raider FIDO:1:116/12