Relay-Version: version B 2.10 5/3/83; site utzoo.UUCP
Posting-Version: version B 2.10.2 9/12/84; site desint.UUCP
Path: utzoo!utcs!lsuc!pesnta!hplabs!sdcrdcf!trwrb!desint!geoff
From: geoff@desint.UUCP (Geoff Kuenning)
Newsgroups: net.unix-wizards,net.wanted
Subject: Re: disallowing subshell in More
Message-ID: <336@desint.UUCP>
Date: Mon, 11-Feb-85 23:22:44 EST
Article-I.D.: desint.336
Posted: Mon Feb 11 23:22:44 1985
Date-Received: Wed, 13-Feb-85 19:06:56 EST
References: <362@men1.UUCP>
Distribution: net
Organization: his home computer, Manhattan Beach, CA
Lines: 17
Xref: utcs net.unix-wizards:11324 net.wanted:5712
Summary: Use su -c

In article <362@men1.UUCP> ron@men1.UUCP (Ron Flax) writes:

>Here's the senario, I have a menu that allows certain users to have root access
>to several functions (unjamming the print queue, archiving & restoring files, 
>etc).  One of the options is to allow the user to get a listing of a tape
>archive to the screen (piped through More) which of course allows the user to
>type a '!sh' and viola! a root shell.

How about piping the listing into

	su real-user-id -c "more"

-- 

	Geoff Kuenning
	Unix Consultant
	...!ihnp4!trwrb!desint!geoff