Restricted shell
In PowerVC virtual appliance, restricted shell is enabled.
The restricted shell is different from the normal shell that is used in Linux® environment. Linux commands are allowed with certain restrictions. The restricted shell provides more protection from running destructive commands. The /pvcrbin/ and /usr/pvcrbin directory are the executable location.
The following operations are few of the operations that are blocked in the restricted shell:
- The change directory operation (cd command) is not allowed.
- The path of the shell cannot be changed.
- The redirect output operation (
>or>>operator) is not allowed. - The commands cannot start with
/or./operator. - The exec command is not allowed.
- You cannot run scripts in restricted shell.
The following types of commands are available in restricted shell:
- Linux wrapper commands. For example, rm, rmdir, mkdir, openstack, free, head, tail, cat.
- Elevated PowerVC wrapper commands through command control. For example, powervc-opsmgr, powervc-config, powervc-services.
Note: Use the journalctl command to view and query logs that are collected
by
systemd-journald system
service.