Bug#798473: Please let non-root users ask for passwords

martin f krafft madduck at debian.org
Wed Sep 9 19:49:10 BST 2015 

Package: systemd
Version: 225-1
Severity: wishlist
File: /bin/systemd-ask-password

The file being in /bin suggests that users can use it. However,
writing a service unit just now using User= to start a process as
non-root exposed that /run/systemd/ask-password is not writeable by
non-root.

Is there any technical reason why not anyone can register
password-ask requests with the system? Ideally, the requests would
get a target user such that e.g. systemd-tty-ask-password-agent can
be fired off by the target users to respond to queries.

-- Package-specific info:

-- System Information:
Debian Release: stretch/sid
  APT prefers unstable
  APT policy: (500, 'unstable'), (1, 'experimental')
Architecture: amd64 (x86_64)
Foreign Architectures: i386

Kernel: Linux 4.0.0-2-amd64 (SMP w/4 CPU cores)
Locale: LANG=en_NZ, LC_CTYPE=en_NZ.UTF-8 (charmap=UTF-8)
Shell: /bin/sh linked to /bin/dash
Init: systemd (via /run/systemd/system)

Versions of packages systemd depends on:
ii  adduser         3.113+nmu3
ii  libacl1         2.2.52-2
ii  libapparmor1    2.9.2-3
ii  libaudit1       1:2.4.4-1
ii  libblkid1       2.27-1
ii  libc6           2.19-19
ii  libcap2         1:2.24-11
ii  libcap2-bin     1:2.24-11
ii  libcryptsetup4  2:1.6.6-5
ii  libgcrypt20     1.6.3-2
ii  libkmod2        21-1
ii  liblzma5        5.1.1alpha+20120614-2.1
ii  libmount1       2.27-1
ii  libpam0g        1.1.8-3.1
ii  libseccomp2     2.2.3-2
ii  libselinux1     2.3-2+b1
ii  libsystemd0     225-1
ii  mount           2.27-1
ii  sysv-rc         2.88dsf-59.2
ii  udev            225-1
ii  util-linux      2.27-1

Versions of packages systemd recommends:
ii  dbus            1.9.16-2
ii  libpam-systemd  225-1

Versions of packages systemd suggests:
pn  systemd-container  <none>
pn  systemd-ui         <none>

-- debconf-show failed


-- 
 .''`.   martin f. krafft <madduck at d.o> @martinkrafft
: :'  :  proud Debian developer
`. `'`   http://people.debian.org/~madduck
  `-  Debian - when you have better things to do than fixing systems
-------------- next part --------------
A non-text attachment was scrubbed...
Name: digital_signature_gpg.asc
Type: application/pgp-signature
Size: 1107 bytes
Desc: Digital signature (see http://martin-krafft.net/gpg/sig-policy/999bbcc4/current)
URL: <http://lists.alioth.debian.org/pipermail/pkg-systemd-maintainers/attachments/20150909/e22f305b/attachment.sig>

More information about the Pkg-systemd-maintainers mailing list