My original question:
>> I want to create a Turn-Key account. That is, I want the user
>> to login, be put directly into an application, and when he
>> exits the application, to be logged out. The user needs to run
>> the ksh shell. What I've done so far, is to put the command to
>> run the application at the end of the .profile. I am wondering
>> if this is really secure. That is, is there a way for the user
>> to break out of the application and get to the shell ? Is there
>> a way for the user to skip the execution of the .profile
>> command ? Perhaps I should source the command that runs the
>> application. Perhaps I should make a special login shell for
>> the purpose. If so, how do I do that ?
My solution so far:
1. In /etc/passwd - for shell - /usr/local/bin/application-name
2. In /usr/local/bin/application-name
#!/bin/ksh
#
trap '' 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15
PATH=$HOME/bin:${PATH:-/usr/bin:.}
export PATH
stty dec
tset -I -Q
MAIL=/usr/spool/mail/$USER
#
#
TERM=vt100;export TERM
exec application
exit
What do you think ? Further comments are welcome. I'll summarize again.
Other suggestions incluuded using /bin/Rsh
Thanks to:
>>>>> "Justin" == Justin Richardson <justin.richardson_at_citicorp.com>
>>>>> "Hellebo" == Hellebo Knut <Knut.Hellebo_at_nho.hydro.com>
>>>>> "UFPEL" == UFPEL <- CPMET <ufpelrm_at_eu.ansp.br>>
>>>>> "Thomas" == Thomas Erskine <tom_at_silverlock.dgim.doc.ca>
>>>>> "Jonathan" == Jonathan B Craig <jcraig_at_gfs.com>
>>>>> "Stephen" == Stephen L LaBelle <labelles_at_mscd.edu>
>>>>> "Richard" == Richard Mackerras <richard_at_metz.une.edu.au>
>>>>> "Cenon" == Cenon B C Marana <bonn_at_durian.usc.edu.ph>
>>>>> "ron" == ron barrett <ron_barrett_at_corp.Cubic.COM>
--
The day is short, and the work is great, | Aharon Schkolnik
and the laborers are lazy, and the reward | Aharon_at_Matat.Health.Gov.IL
is great, and the Master of the house is |
impatient. - Ethics Of The Fathers Ch. 2 |
Received on Mon May 06 1996 - 09:58:44 NZST