In this article, we will discuss what rbash in Linux is and how we can use it to suit our needs, and also discuss the effects it has on our system.
Meanwhile, we will also discuss how secure it is.
What is rbash?
A restricted shell or rbash, as its name suggests is a shell similar to bash, but it differs in the perspective that it has lots of restrictions in place to avoid certain actions to be taken by the user. It is used for security purposes for using bash, but with an additional layer of security, to implement those restrictions.
Why do we use rbash in Linux?
We use rbash in Linux where we want the user to have restricted privileges like using certain programs. Keeping user from changing directories.
Many of the websites over the internet have rbash in place, to prevent overuse of their systems.
Many online learning websites use Restricted Shell (rbash) for educational purposes in their learning content, giving them access to the bash in a restricted manner to prevent unnecessary use.
Restrictions implemented in rbash
The restrictions that the Restricted Shell (rbash) has implemented in it are –
- limiting from changing directories using
cd - using command names containing slashes ( / )
- modifying various paths and environment variables
- importing functions from the bash environment at startup
- parsing values from the bash environment at startup
- Redirection of output using > , >| , <> , >& , &> and >> redirection operators
- Specifying filenames containing ” / ” or ” – ” to
history,hash -por.built-in commands - specifying the ‘-p’ option with built-in commands
- turning off the restricted mode using ‘set +o restricted’ or ‘set +r’.
- enabling the disabled built-in commands using ‘enable’ built-in command
- using exec to replace the shell with another command
To check whether a command is built-in or not, use type the keyword before a command to know if it is built-in or not.
type <command-name>
For more detailed information, you can refer to Rbash GNU documentation or run the following command to access its manpages on your system using the man command–
man rbash
It will open up the manpages of rbash as shown below.
Starting rbash in Linux
You can start rbash in Linux Restricted Bash by running the following command:
rbash
or
bash -r
It will look something like this. to ensure that rbash is enabled, you can run any restricted command like cd .
Testing rbash on Linux
As we have enabled the rbash in Linux, now let’s test it.
While trying to use cd, it gave the error rbash: cd : restricted , the way it was supposed to. As cd is restricted by rbash.
Next, while trying to redirect output to a file, it gave a similar error as rbash restricts output redirects.
Limitations of rbash
Like various other things, rbash also has some limitations to it –
- When a command which is actually a shell script is encountered, rbash allows all the restrictions that are supposed to hinder the script
- Rbash isn’t much secure, it can be broken out of in several ways
- Running bash from rbash gives the user unrestricted access.
- Not sufficient to try out untrusted software
Bonus
- You can create a guest user in your system with rbash as the default bash environment, for use by other people. So, they do not break the system or interfere with your personal data.
- Best practices suggest using Restricted Bash with chroot jail to limit access to the system as a whole.
Conclusion
In this article, we discussed what Restricted Bash or rbash in Linux is, and why we use it in various places like e-learning websites or other places. We also covered using the rbash, explaining how it differs from our basic bash and how we can use rbash on our system.