Path: utzoo!utgpu!attcan!uunet!husc6!bloom-beacon!mit-eddie!killer!mjbtn!raider!root
From: root@raider.UUCP (Bob Reineri)
Newsgroups: comp.unix.xenix
Subject: Security
Keywords: Security
Message-ID: <4@raider.UUCP>
Date: 14 Aug 88 15:24:52 GMT
Organization: RaiderNet Public Access, Murfreesboro, TN
Lines: 24

I am rapidly finding out that running a public access system is a security 
nightmare. I am currently having a couple of problems :-), perhaps someone
may be able to help. 

I would like to give folks access to vnews and elm via a restricted shell. I 
have dutifully set up a 'restricted' bin directory containing just a few     
commands, like vi, vnews, readnews, who, cat; I set all restricted users PATH
to this directory only. Here's the rub:

They can use shell commands from within either vnews of vi and do anything  
their heart desires (within normal system security, of course). Well, this
just won't work ! I know there is a 'red' editor, but I hate to confine them
to that. 

Does anyone have a solution for me ? Am I trying to do this the wrong way ? 

Bob
-- 
     ______
    /     / RaiderNet Public Access - Node 2 (Xenix)        (615) 896-8716
   /_____/   ___   o  ___   ___   ___       * Murfreesboro, Tennessee    *
  /   \     /__/  /  /  /  /__   /__/       * Middle Tennessee's Gate    *
_/     \___/  /__/__/__/__/__ __/  \_       * Node 1 (615) 896-7905 (DOS)*
UUCP: !{ames,osu-cis,rutgers,decwrl,mit-eddie}!killer!raider FIDO:1:116/12