regression bug: user loses DISPLAY & REMOTEHOST with 'su -p

public inbox for util-linux@vger.kernel.org
 help / color / mirror / Atom feed

* regression bug: user loses DISPLAY & REMOTEHOST with  'su -p - username"
@ 2013-12-17 23:12 Linda Walsh
  2013-12-18 10:54 ` Karel Zak
  0 siblings, 1 reply; 3+ messages in thread
From: Linda Walsh @ 2013-12-17 23:12 UTC (permalink / raw)
  To: util-linux

"su --preserve_environment - username" no longer preserves
your REMOTEHOST and DISPLAY values.  They should be
in the same class as 'TERM', as they are passed from the
pre-login environment.

I don't know if there are other values that shouldn't be
removed -- but it is bad to clear the environment just
because one wants a shell called with '-<shell>'.

The preserve environment flag is NOT incompatible with login.
It means don't clear the env, but do call login via -<shell>.

-p means don't clear the ENV -- but do call the user's shell
with a '-' in front of it.  That has always been the functionality
of 'su'.

If you want to make 'su' fancier, maybe it needs a "/etc/suers.conf"
file so specific values can be easily changed to reflect
site policy rather than hard coding them.

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: regression bug: user loses DISPLAY & REMOTEHOST with  'su -p - username"
  2013-12-17 23:12 regression bug: user loses DISPLAY & REMOTEHOST with 'su -p - username" Linda Walsh
@ 2013-12-18 10:54 ` Karel Zak
  2013-12-18 20:05   ` Linda Walsh
  0 siblings, 1 reply; 3+ messages in thread
From: Karel Zak @ 2013-12-18 10:54 UTC (permalink / raw)
  To: Linda Walsh; +Cc: util-linux


 Hi Linda,

On Tue, Dec 17, 2013 at 03:12:56PM -0800, Linda Walsh wrote:
> 
> "su --preserve_environment - username" no longer preserves
> your REMOTEHOST and DISPLAY values.  They should be
> in the same class as 'TERM', as they are passed from the
> pre-login environment.
> 
> I don't know if there are other values that shouldn't be
> removed -- but it is bad to clear the environment just
> because one wants a shell called with '-<shell>'.

Please, when you call a problem "regression" then it would be nice
to know which version was correct... because util-linxu su(1) is code
from coreutils and I see in the original code as well as in the
current code:

 if (simulate_login) {
    ... reset environment ...

 } else if (change_environment) {  
    ... modify HOME, SHELL, ...
 }


it means that --login and --preserve-environment has been always
mutually exclusive and the latest version prints wanning when the
options are use together. It's also described in the man page.

> The preserve environment flag is NOT incompatible with login.
> It means don't clear the env, but do call login via -<shell>.
> 
> -p means don't clear the ENV -- but do call the user's shell
> with a '-' in front of it.  That has always been the functionality
> of 'su'.
>
> If you want to make 'su' fancier, maybe it needs a "/etc/suers.conf"
> file so specific values can be easily changed to reflect
> site policy rather than hard coding them.

It would be probably better to use PAM for such things.

    Karel

-- 
 Karel Zak  <kzak@redhat.com>
 http://karelzak.blogspot.com

^ permalink raw reply	[flat|nested] 3+ messages in thread

* Re: regression bug: user loses DISPLAY & REMOTEHOST with  'su -p - username"
  2013-12-18 10:54 ` Karel Zak
@ 2013-12-18 20:05   ` Linda Walsh
  0 siblings, 0 replies; 3+ messages in thread
From: Linda Walsh @ 2013-12-18 20:05 UTC (permalink / raw)
  To: Karel Zak; +Cc: util-linux

Karel Zak wrote:
> it means that --login and --preserve-environment has been always
> mutually exclusive and the latest version prints wanning when the
> options are use together. It's also described in the man page.
>   
----
    You are right.  Compared back with to core utils 8.9 -- same.
Confused it with an open suse change to call pam_env /session instead of
per_auth which has a similar effect of losing remote DISPLAY/REMOTEHOST
vals.

>   
>> The preserve environment flag is NOT incompatible with login.
>> It means don't clear the env, but do call login via -<shell>.
>>
>> -p means don't clear the ENV -- but do call the user's shell
>> with a '-' in front of it.  That has always been the functionality
>> of 'su'.
>>
>> If you want to make 'su' fancier, maybe it needs a "/etc/suers.conf"
>> file so specific values can be easily changed to reflect
>> site policy rather than hard coding them.
>>     
>
> It would be probably better to use PAM for such things.
>   
----

    PAM doesn't maintain state.  After the initial authorization that 
grants you access to the machine -- the "where" you came from is lost.

    Perhaps this is a deficiency in PAM, can't say, but DISPLAY is
like TERM.  It tells you how to send output to the user.  DISPLAY can be
derived from REMOTEHOST only on initial authorization when the host is
first entered.  Since future "sessions" from a remote-entry all stem from
the initial login, it would seem useful to preserve information about
the origination.  TERM is preserved because it describes the nature of
the terminal functions to use at 'DISPLAY'.  It seems a bit myopic to
save TERM but not DISPLAY. 

    Other vars could easily fall into that category.  But certainly,
losing DISPLAY information is at least, no less valuable than losing TERM.

^ permalink raw reply	[flat|nested] 3+ messages in thread

end of thread, other threads:[~2013-12-18 20:05 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2013-12-17 23:12 regression bug: user loses DISPLAY & REMOTEHOST with 'su -p - username" Linda Walsh
2013-12-18 10:54 ` Karel Zak
2013-12-18 20:05   ` Linda Walsh

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox