diff options
| author | Kim Hagen <kim.sidney@gmail.com> | 2018-05-25 15:13:41 +0200 |
|---|---|---|
| committer | Kim Hagen <kim.sidney@gmail.com> | 2018-05-25 15:13:41 +0200 |
| commit | 84e78a4150ff451a96e8089ed6d762cadab79463 (patch) | |
| tree | c5dce6bf836eae4a9afac7034e275f6647201707 | |
| parent | f9ba7752002dab727d7c801cd8fe1a5fe5650794 (diff) | |
| download | libpam-radius-auth-84e78a4150ff451a96e8089ed6d762cadab79463.tar.gz libpam-radius-auth-84e78a4150ff451a96e8089ed6d762cadab79463.zip | |
use resticted shell for operator users
| -rw-r--r-- | src/radius_shell.c | 25 |
1 files changed, 19 insertions, 6 deletions
diff --git a/src/radius_shell.c b/src/radius_shell.c index 5da76dc..ee3b69b 100644 --- a/src/radius_shell.c +++ b/src/radius_shell.c @@ -44,6 +44,7 @@ #include <string.h> #include <errno.h> #include <stdio.h> +#include <stdbool.h> #include <sys/fsuid.h> #include <sys/capability.h> @@ -53,12 +54,14 @@ int main(int cnt, char **args) cap_value_t capability[] = { CAP_SETUID}; cap_t capabilities; char *shell = NULL, *check = NULL, execshell[64]; + bool priv = true; uid = getuid(); auid = audit_getloginuid(); if (uid < 1000 || auid < 1000 || auid == (uid_t)-1 || uid == auid) { /* We try to be careful in what we will change */ + priv = false; goto execit; } @@ -110,12 +113,22 @@ execit: /* should really check this against /etc/shell */ snprintf(execshell, sizeof execshell, "/bin/%s", check); #else - check = "bash"; - if (*args[0] == '-') - shell = "-bash"; - else - shell = "bash"; - snprintf(execshell, sizeof execshell, "/bin/%s", check); + if (priv) { + check = "vbash"; + if (*args[0] == '-') + shell = "-vbash"; + else + shell = "vbash"; + snprintf(execshell, sizeof execshell, "/bin/%s", check); + } + else { + check = "restricted-shell"; + if (*args[0] == '-') + shell = "-restricted-shell"; + else + shell = "restricted-shell"; + snprintf(execshell, sizeof execshell, "/opt/vyatta/bin/%s", check); + } #endif args[0] = shell; |