How to prevent users from shelling out using '!'
Posted 12 December 2002 - 05:25 AM
I just entered this question as a reply to a post, but I realise that could get missed, so I hope you don't mind me entering it again in its 'own right'.
Is there a way of (preferably selectively) preventing users from shelling out to Unix using '!' ?
Posted 12 December 2002 - 10:29 AM
Or set a default function in @DFUNCT - it gets executed instead of the '?' prompt.
I don't know a way to allow use of the '?' prompt but not the '!' escape to the shell.
Posted 13 December 2002 - 09:54 AM
Use DISABLE(@INTERRUPT) to stop them using Ctrl-C / Ctrl-Break
Set @DFUNCT to some trap function which logs the users off (and logs the problem - usually it's a function exiting to an undefined function)
That should stop the blighters!
Posted 13 December 2002 - 11:47 AM
You'd need to make sure that you check the No Command Call on the function being called too.
Posted 16 December 2002 - 12:55 AM
I should have mentioned that we are running ChESS, or at least that users have access to menus.
From the 'Enter Selection:' prompt on a menu, they can type '!sh' etc.
Can THIS be prevented?
Posted 16 December 2002 - 05:42 PM
Posted 20 December 2002 - 09:21 PM
However, the function EIFSHELL can still be run to get out to a shell. Properly set the security on it, and this should give you the selective functionality that you are looking for.
Reply to this topic
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users