[Top][All Lists]

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Help-nano] Does nan allow for shell escape?

From: Benno Schulenberg
Subject: Re: [Help-nano] Does nan allow for shell escape?
Date: Fri, 21 Jul 2017 09:32:52 +0200
User-agent: Mozilla/5.0 (X11; Linux x86_64; rv:52.0) Gecko/20100101 Thunderbird/52.2.1

Hello Mark,

We have users that are wanting to edit files owned by root and we have restrictions that restrict that activity. My question is, does nan allow for shell escape in order to invoke other commands or scripts?

In it's default mode, nano will allow the executing of commands (and
reading their output into the current buffer) with ^R ^X.

I’m not finding any doc stating that it will/can or restricts those

Doing 'man nano' and searching for "restrict" should have given you the
answer.  But to expand on that:

If you make it so that those users, when they sudo or whatever, can
only execute 'nano --restricted' (or 'rnano') and not plain nano,
then you should have a safe way to let those users edit files owned
by root without them being able to do anything other than that.


reply via email to

[Prev in Thread] Current Thread [Next in Thread]