Re: "su is really a broken concept"

To: debian-user@lists.debian.org
Cc: debian-user@lists.debian.org
Subject: Re: "su is really a broken concept"
From: Jonathan de Boyne Pollard <J.deBoynePollard-newsgroups@NTLWorld.com>
Date: Tue, 1 Sep 2015 01:25:51 +0100
Message-id: <[🔎] 55E4F08F.80901@NTLWorld.com>
In-reply-to: <55E48295.9000108@iwakd.de>
References: <55E48295.9000108@iwakd.de>

Lennart Poettering(https://github.com/systemd/systemd/issues/825#issuecomment-127917622):

Long story short:  su is really a broken concept.


Christian Seiler:

So it's not like su is suddenly broken - it's just that some specificnew use cases don't work properly with it.

A fair number of people got their backs up for the very reason that suwas described as "broken". One could, of course ask whether in fact itis the XDG Base Directory Specification(http://standards.freedesktop.org/basedir-spec/basedir-spec-latest.html)that is the broken concept, for incorporating the notion of the only waythat one reaches the point of running as any given user account beinglogin. ("the user being logged in ... the user first logs in ... theuser fully logs out ... the user logs in more than once ... first login... last logout ... a full logout/login cycle") Design a mechanism thatat its foundation and throughout takes no account of adding other useraccount privileges into a login session with su, or indeed thatprocesses wanting to create "runtime" files might be set-UID, and ofcourse it will conflict.

Reply to:

Follow-Ups:
- Re: "su is really a broken concept"
  - From: "T.J. Duchene" <t.j.duchene@gmail.com>

Next by Date: Re: systemd-logind emitting messages to the terminal upon login
Next by thread: Re: "su is really a broken concept"
Index(es):
- Date
- Thread