Path: utzoo!attcan!utgpu!jarvis.csri.toronto.edu!mailrus!ncar!tank!mimsy!chris
From: chris@mimsy.UUCP (Chris Torek)
Newsgroups: comp.unix.wizards
Subject: Re: Shutting off accounts
Keywords: accounts, /dev/null, shutoff, `Woof!'
Message-ID: <19778@mimsy.UUCP>
Date: 24 Sep 89 15:40:29 GMT
References: <435@lxn.eds.com> <347@galadriel.bt.co.uk> <4183@buengc.BU.EDU> <19747@mimsy.UUCP>
Organization: U of Maryland, Dept. of Computer Science, Coll. Pk., MD 20742
Lines: 16

In article <19747@mimsy.UUCP> kilroy@mimsy.UUCP (She Blinded Me With Science)
writes:
>On mimsy there is a directory called /etc/restrict/login, in which you
>can create a file for a user whose account has been restricted and it
>will let them know what & why.  I do not know if this is a BSD standard
>or a local UMD hack (Mr. Torek produces those rather frequently  8^).

It is a local hack, but actually was Fred Blonder's idea.

Since /bin/login applies the restriction, there is no way for anyone
to circumvent it except via `su' (or other setuid programs, possibly
setuid to that person).  The latter is not worth protecting against
(too difficult, for too little gain).
-- 
In-Real-Life: Chris Torek, Univ of MD Comp Sci Dept (+1 301 454 7163)
Domain:	chris@mimsy.umd.edu	Path:	uunet!mimsy!chris