Bug#571086: base-files: PATH should be set in /etc/profile since not everyone uses login?

Tue, 23 Feb 2010 08:19:58 -0800 

Santiago Vila <sanv...@unex.es> writes:
> So yes, I think dropbear should behave the same as openssh-server.

I now installed openssh-server to my debian testing system and noticed
that it does not seem to read login.defs either(!):

Steps to reproduce:
1) change the lines

ENV_SUPATH      
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
ENV_PATH        PATH=/usr/local/bin:/usr/bin:/bin:/usr/local/games:/usr/games

in /etc/login.defs to

ENV_SUPATH      
PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/pathtest1
ENV_PATH        
PATH=/usr/local/bin:/usr/bin:/bin:/usr/local/games:/usr/games:/pathtest2

so that we can easily see if PATH from login.defs really gets used.

2) ssh -l root localhost 'echo $PATH'

Expected results:
2) root's PATH includes "/pathtest1"

Actual results:
2) root's PATH is 
"/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/bin/X11" 
which does not include /pathtest1

More info:
1) 

==> /etc/profile <==
# /etc/profile: system-wide .profile file for the Bourne shell (sh(1))
# and Bourne compatible shells (bash(1), ksh(1), ash(1), ...).

#if [ "`id -u`" -eq 0 ]; then
#  PATH="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
#else
#  PATH="/usr/local/bin:/usr/bin:/bin:/usr/games"
#fi

if [ "$PS1" ]; then
  if [ "$BASH" ]; then
    PS1='\...@\h:\w\$ '
  else
    if [ "`id -u`" -eq 0 ]; then
      PS1='# '
    else
      PS1='$ '
    fi
  fi
fi

export PATH

umask 022

==> /root/.bashrc <==
export PS1='\h:\w\$ '
umask 022

==> /root/.profile <==
# ~/.profile: executed by Bourne-compatible login shells.

if [ "$BASH" ]; then
  if [ -f ~/.bashrc ]; then
    . ~/.bashrc
  fi
fi

mesg n


2) /etc/sshd_config has "#UseLogin no" which is the the default. Maybe
this default should be changed?

3) Re "UseLogin" "man sshd_config" says 

"Note also, that if this is enabled, X11Forwarding will be disabled
because login(1) does not know how to handle xauth(1) cookies"

If this is true then surely we can't ask people to configure openssh
to use login?




-- 
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org

Reply via email to