is ${PATH} in pam_env.conf supposed to see PATH set by login.defs?

To: "debian-user@lists.debian.org" <debian-user@lists.debian.org>
Subject: is ${PATH} in pam_env.conf supposed to see PATH set by login.defs?
From: "Daniel B." <dsb@smart.net>
Date: Thu, 11 Sep 2003 19:48:35 -0400
Message-id: <[🔎] 3F6109D3.CC8A0DD8@smart.net>

In /etc/security/pam_env.conf, is ${PATH} supposed to "see" the value
of PATH set by /etc/login.defs?

If I set PATH in login.defs (using ENV_PATH=xxx) and set PATH=${PATH}:yyy
in pam_env.conf, the setting from login.defs doesn't show up (PATH gets
set to ":yyy").

If I remember correctly (I looked at the code a while ago), login reads
login.defs first and calls PAM second, but when it calls PAM, it doesn't 
pass to PAM the settings from login.defs, so when PAM evaluates ${PATH}, 
it apparently doesn't find any value.  (It doesn't see any inherited 
value, but I assume that's intentional, for security.)


Is that behavior (${PATH} in pam_env.conf not "seeing" a value set by
login.defs) correct or is it a bug?

(This is in woody, with libpam-modules version 0.72-35 and 
login version 20000902-12.)


Thanks,
Daniel
-- 
Daniel Barclay
dsb@smart.net

Reply to:

Prev by Date: exim4 smtp auth via libpam-dotfile
Next by Date: Re: how to get a silent harddisk?
Previous by thread: Re: exim4 smtp auth via libpam-dotfile
Next by thread: is ${PATH} in pam_env.conf supposed to see PATH set by login.defs?
Index(es):
- Date
- Thread