[pkg-gnupg-maint] Bug#1101471: starting of agent for system accounts is inacceptable
Andreas Metzler
ametzler at bebt.de
Fri Mar 28 18:22:22 GMT 2025
On 2025-03-28 Marc Haber <mh+debian-packages at zugschlus.de> wrote:
> Package: gpg-agent
> Version: 2.2.46-6
> Severity: important
> Hi,
> from the README:
> |Since 2.1.17, users on machines with systemd will have their gpg-agent
> |process launched automatically by systemd's user session, upon first
> |access of any of the expected gpg-agent sockets (including the ssh
> |socket). systemd will also cleanly tear this process down at session
> |logout.
> I find that inacceptable at least for system accounts. The suggested
> remedy is to manually mask four systemd units inside every single
> account.
[...]
Hello Marc,
I am a little bit too slow right now to wade through systemd's
documentation but afaiui systemd's user sessions happen on login, which
usually is disabled for system accounts.
cu Andreas
More information about the pkg-gnupg-maint
mailing list