conf/145887: /usr/sbin/nologin should be in the default /etc/shells

Paul Hoffman phoffman at
Tue Apr 20 15:10:06 UTC 2010

>Number:         145887
>Category:       conf
>Synopsis:       /usr/sbin/nologin should be in the default /etc/shells
>Confidential:   no
>Severity:       serious
>Priority:       medium
>Responsible:    freebsd-bugs
>State:          open
>Class:          change-request
>Submitter-Id:   current-users
>Arrival-Date:   Tue Apr 20 15:10:05 UTC 2010
>Originator:     Paul Hoffman
>Release:        8.0
FreeBSD 8.0-RELEASE-p2 FreeBSD 8.0-RELEASE-p2 #0: Tue Jan  5 16:02:27 UTC 2010     root at  i386
I just migrated to a new machine, and a bunch of mail was bounced until it was reported to me by the users. It turns out that procmail won't copy mail to a file unless the user's default shell is listed in /etc/shells. However, /usr/sbin/nologn (which is what many of us use for mail-only users) is not in /etc/shells by default, even though it is offered as a shell by adduser.

If adduser offers it as a shell, it should be listed in /etc/shells; otherwise, this kind of error will nail admins.

If it is decided not add /usr/sbin/nologin to /etc/shells, I propose that if someone tells adduser that that is a user's shell, adduser should have a warning that tells the admin that the shell they are adding is not in /etc/shells.
Look at the default /etc/shells
Add /usr/sbin/nologin to /etc/shells.


More information about the freebsd-bugs mailing list