X-MimeOLE: Produced By Microsoft Exchange V6.5
Received: by onstor-exch02.onstor.net 
	id <01C82BC6.ABF74E74@onstor-exch02.onstor.net>; Tue, 20 Nov 2007 14:42:46 -0800
MIME-Version: 1.0
Content-Type: text/plain;
	charset="us-ascii"
Content-Transfer-Encoding: quoted-printable
Content-class: urn:content-classes:message
Subject: RE: SystemX management shell documents to review
Date: Tue, 20 Nov 2007 14:42:45 -0800
Message-ID: <BB375AF679D4A34E9CA8DFA650E2B04E06A7CA13@onstor-exch02.onstor.net>
In-Reply-To: <20071120135600.72d425be@ripper.onstor.net>
X-MS-Has-Attach: 
X-MS-TNEF-Correlator: 
Thread-Topic: SystemX management shell documents to review
Thread-Index: AcgrwCNpd99OWTV5SpCGf2HJH51qqQABkdww
References: <BB375AF679D4A34E9CA8DFA650E2B04E05963FB7@onstor-exch02.onstor.net> <BB375AF679D4A34E9CA8DFA650E2B04E06A7BD5D@onstor-exch02.onstor.net> <20071120135600.72d425be@ripper.onstor.net>
From: "Maxim Kozlovsky" <maxim.kozlovsky@onstor.com>
To: "Andy Sharp" <andy.sharp@onstor.com>,
	"Jonathan Goldick" <jonathan.goldick@onstor.com>
Cc: "Joshua Goldenhar" <joshua.goldenhar@onstor.com>,
	"Sudheesh Nair" <sudheesh.nair@onstor.com>,
	"dl-Software" <dl-software@onstor.com>,
	"dl-QA" <dl-qa@onstor.com>,
	"dl-Customer Service Group" <csgroup@onstor.com>

>
>Section 4.8
>
>Not in a chrooted environment, a restricted environment which consists
>mainly of an unchangeable PATH setting.  Utilities can be added to the
>appropriate paths as their need is discovered in testing and debugging.

[MK]  From "man bash":
       When a command that is found to be a shell script is executed
(see COM-
       MAND EXECUTION above), rbash turns off any restrictions  in  the
shell
       spawned to execute the script.

I think that means that running bash in restricted mode is meaningless
if you want to allow the users to create their own shell scripts.


