[Pkg-shadow-devel] Bug#711104: login: su - doesn't set umask
Piotr Engelking
inkerman42 at gmail.com
Tue Jun 4 17:59:58 UTC 2013
Package: login
Version: 1:4.1.5.1-1
Severity: important
The 'su -' command, unlike login, doesn't set umask. This behavior
disagrees with the man page, which says:
The optional argument - may be used to provide an environment similar
to what the user would expect had the user logged in directly.
Operating with an unexpected umask value is dangerous, particularly so
if running as root.
Please change su - to set umask to the same value that login does.
-- System Information:
Debian Release: jessie/sid
APT prefers testing
APT policy: (500, 'testing'), (400, 'unstable'), (300, 'experimental')
Architecture: amd64 (x86_64)
Kernel: Linux 3.8-2-amd64 (SMP w/2 CPU cores)
Locale: LANG=C.UTF-8, LC_CTYPE=C.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Versions of packages login depends on:
ii libc6 2.17-3
ii libpam-modules 1.1.3-9
ii libpam-runtime 1.1.3-9
ii libpam0g 1.1.3-9
login recommends no packages.
login suggests no packages.
-- no debconf information
More information about the Pkg-shadow-devel
mailing list