Re: sudo doesn't set HOME

To: Debian Users Mailing List <debian-user@lists.debian.org>
Subject: Re: sudo doesn't set HOME
From: Scott <angrykeyboarder@angrykeyboarder.com>
Date: Tue, 07 Mar 2006 16:40:56 -0700
Message-id: <[🔎] 440E1A08.8070703@angrykeyboarder.com>
In-reply-to: <[🔎] 20060306133834.GC31107@alcopop.org>
References: <[🔎] Pine.LNX.4.58.0603051543110.15345@zuzia.materials.unsw.edu.au> <[🔎] dueh5a$v12$1@sea.gmane.org> <[🔎] Pine.LNX.4.58.0603061037460.16949@zuzia.materials.unsw.edu.au> <[🔎] duh2eh$que$1@sea.gmane.org> <[🔎] 20060306133834.GC31107@alcopop.org>

Jon Dowland spake thusly on 03/06/2006 06:38 AM:

On Mon, Mar 06, 2006 at 04:21:05AM -0600, Hugo Vanwoerkom
wrote:

1.6.8p7-1.3 does not set some ENV variables because it was
deemed this was a security risk. As a result it functions
differently than previous versions and you have to fiddle
with sudoers to get it to behave as it did before.


More precicely, 1.6.8p7-1.3 moves from a blacklist model
(where known-dangerous environment variables were stripped)
to a whitelist model (where you have to explicitly name the
environment variables to retain in the sudoers file).


Now all one has to do is figure out what those are......
--
Scott
www.angrykeyboarder.com
© 2006 angrykeyboarder™ & Elmer Fudd. All Wights Wesewved

Reply to:

References:
- sudo doesn't set HOME
  - From: Tadeusz Bak <T.Bak@unsw.edu.au>
- Re: sudo doesn't set HOME
  - From: Hugo Vanwoerkom <hvw59601@care2.com>
- Re: sudo doesn't set HOME
  - From: Tadeusz Bak <T.Bak@unsw.edu.au>
- Re: sudo doesn't set HOME
  - From: Hugo Vanwoerkom <hvw59601@care2.com>
- Re: sudo doesn't set HOME
  - From: Jon Dowland <lists@alcopop.org>

Prev by Date: Re: gpg keys on multiple machines
Next by Date: Re: LVM problem
Previous by thread: Re: sudo doesn't set HOME
Next by thread: Re: sudo doesn't set HOME
Index(es):
- Date
- Thread