[Pkg-shadow-devel] Bug#505071: Bug#505071: closed ... fixed in shadow 1:4.1.3-1
Nicolas François
nicolas.francois at centraliens.net
Mon Apr 27 00:03:48 UTC 2009
On Mon, Apr 27, 2009 at 06:51:11AM +1000, psz at maths.usyd.edu.au wrote:
> Dear Nicolas,
>
> >> But mainly, "exec login" cannot possibly work in a PAM environment, but
> >> will fail/die and "lose" the user session; users should not be tricked
> >> into doing that. Presumably the user logged in with login (e.g. telnet,
> >> may not apply for ssh or xterm); then login done a fork before running
> >> the shell; any utmp entry refers to the PID of the parent login.
> >
> > I don't get your point.
> > At least when login was setuid on debian, "exec login" used to work on PAM
> > environments.
>
> Please do the simple test (which "works" regardless whether login is
> setuid or not):
>
> anyone at anywhere:~$ /usr/bin/telnet bari
[...]
>
> Surely your memory of "used to work" is wrong?
It works when you use a tool which sets UTMP before it provides the shell.
telnetd does not, but for example xterm does.
Best Regards,
--
Nekral
More information about the Pkg-shadow-devel
mailing list