Re: Why doesn't Debian use GNU su?

To: Ben Gertzfield <che@debian.org>
Cc: Ethan Benson <erbenson@alaska.net>, David Huggins-Daines <dhd@eradicator.org>, debian-devel@lists.debian.org
Subject: Re: Why doesn't Debian use GNU su?
From: Ben Collins <bcollins@debian.org>
Date: Fri, 21 Jan 2000 14:10:03 -0500
Message-id: <[🔎] 20000121141003.H320@visi.net>
In-reply-to: <[🔎] yttsnzr45f0.fsf@gilgamesh.cse.ucsc.edu>; from che@debian.org on Fri, Jan 21, 2000 at 10:59:31AM -0800
References: <[🔎] Pine.SOL.4.10a.10001201455280.16688-100000@red.csi.cam.ac.uk> <[🔎] 87aem0bwlh.fsf@hobbes.home.ruud.org> <[🔎] yttvh4o4sx6.fsf@gilgamesh.cse.ucsc.edu> <v0422080eb4ace774afcd@[192.168.0.1]> <[🔎] 20000121013913.E15236@blood-axp.eradicator.org> <[🔎] yttiu0n29mb.fsf@gilgamesh.cse.ucsc.edu> <v04220819b4adb6334751@[192.168.0.1]> <[🔎] yttwvp347lf.fsf_-_@gilgamesh.cse.ucsc.edu> <[🔎] 20000121133323.G320@visi.net> <[🔎] yttsnzr45f0.fsf@gilgamesh.cse.ucsc.edu>

On Fri, Jan 21, 2000 at 10:59:31AM -0800, Ben Gertzfield wrote:
> >>>>> "Ben" == Ben Collins <bcollins@debian.org> writes:
> 
>     Ben> Where do you get that shadow's su does not use PAM session
>     Ben> management?  Stop spreading bogus information.
> 
> It does use some PAM session management but not all of it. You've done
> a good job patching shadow's su, but it's not finished. :) I'm sorry
> if I sounded antagonistic, I didn't mean that at all.

It did come across that way :)

> I've gone through the source code to shadow's su, and while it *DOES*
> call pam_start() and pam_end(), it fails to call pam_open_session()
> and pam_close_session().

All that is needed is a bug filed. Adding that support is quite simple (I
can make it abide by the same config option that logins does, on whether
it forks or exec's also).

pam_close_session() only makes sense it certain cases. It is not always
needed, depending the the session module set being used. For example,
pam_krb5 needs pam_close_session() to be called, however, pam_unix.so does
not (not really anyway), and neither does pam_ldap.so.

Make a semi-detailed bug report, and I will follow up on it.

-- 
 -----------=======-=-======-=========-----------=====------------=-=------
/  Ben Collins  --  ...on that fantastic voyage...  --  Debian GNU/Linux   \
`     bcollins@debian.org  --  bcollins@openldap.org  --  bmc@visi.net     '
 `---=========------=======-------------=-=-----=-===-======-------=--=---'

Reply to:

Follow-Ups:
- Re: Why doesn't Debian use GNU su?
  - From: Ben Gertzfield <che@debian.org>

References:
- Re: Potato "testing"
  - From: Jules Bean <jmlb2@hermes.cam.ac.uk>
- Re: Potato "testing"
  - From: ruud@ruud.org (Ruud de Rooij)
- Re: Potato "testing"
  - From: Ben Gertzfield <che@debian.org>
- Re: Potato "testing"
  - From: Ethan Benson <erbenson@alaska.net>
- Re: Potato "testing"
  - From: David Huggins-Daines <dhd@eradicator.org>
- Re: Potato "testing"
  - From: Ben Gertzfield <che@debian.org>
- Re: Potato "testing"
  - From: Ethan Benson <erbenson@alaska.net>
- Why doesn't Debian use GNU su?
  - From: Ben Gertzfield <che@debian.org>
- Re: Why doesn't Debian use GNU su?
  - From: Ben Collins <bcollins@debian.org>
- Re: Why doesn't Debian use GNU su?
  - From: Ben Gertzfield <che@debian.org>

Prev by Date: Re: Why doesn't Debian use GNU su?
Next by Date: Re: KDE not in Debian?
Previous by thread: Re: Why doesn't Debian use GNU su?
Next by thread: Re: Why doesn't Debian use GNU su?
Index(es):
- Date
- Thread