Most users simply login and immediately execute a command to provide
them access to a specific service, such as dialup or entry into a
database.  Limiting them to a menu system or restricted shell will
reduce the chances they can leverage their user login ability to get
system access.