| [ << ] | [ < ] | [ Up ] | [ > ] | [ >> ] | [Top] | [Contents] | [Index] | [ ? ] |
6.10 The Restricted Shell
If Bash is started with the name rbash, or the
‘--restricted’
or
‘-r’
option is supplied at invocation, the shell becomes restricted.
A restricted shell is used to
set up an environment more controlled than the standard shell.
A restricted shell behaves identically to bash
with the exception that the following are disallowed or not performed:
-
Changing directories with the
cdbuiltin. -
Setting or unsetting the values of the
SHELL,PATH,ENV, orBASH_ENVvariables. - Specifying command names containing slashes.
-
Specifying a filename containing a slash as an argument to the
.builtin command. -
Specifying a filename containing a slash as an argument to the ‘-p’
option to the
hashbuiltin command. - Importing function definitions from the shell environment at startup.
-
Parsing the value of
SHELLOPTSfrom the shell environment at startup. - Redirecting output using the ‘>’, ‘>|’, ‘<>’, ‘>&’, ‘&>’, and ‘>>’ redirection operators.
-
Using the
execbuiltin to replace the shell with another command. -
Adding or deleting builtin commands with the
‘-f’ and ‘-d’ options to the
enablebuiltin. -
Using the
enablebuiltin command to enable disabled shell builtins. -
Specifying the ‘-p’ option to the
commandbuiltin. - Turning off restricted mode with ‘set +r’ or ‘set +o restricted’.
These restrictions are enforced after any startup files are read.
When a command that is found to be a shell script is executed
(see section Shell Scripts), rbash turns off any restrictions in
the shell spawned to execute the script.
| [ << ] | [ < ] | [ Up ] | [ > ] | [ >> ] | [Top] | [Contents] | [Index] | [ ? ] |
This document was generated on February 28, 2014 using texi2html 5.0.