home bbs files messages ]

Forums before death by AOL, social media and spammers... "We can't have nice things"

   linux.debian.bugs.dist      Ohh some weird Debian bug report thing      28,835 messages   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]

   Message 27,139 of 28,835   
   Thomas Dickey to Vincent Lefevre   
   Bug#1072237: #1072237 libutempter: integ   
   11 Feb 26 01:30:01   
   
   From: dickey@invisible-island.net   
      
   On Wed, Feb 11, 2026 at 01:13:05AM +0100, Vincent Lefevre wrote:   
   > On 2026-02-10 18:38:10 -0500, Thomas Dickey wrote:   
   > > On Tue, Feb 10, 2026 at 11:59:38PM +0100, Vincent Lefevre wrote:   
   > > > On 2026-02-10 17:06:48 -0500, Thomas Dickey wrote:   
   > > > > utempter uses setgid, while systemd (whose documentation is per-line of   
   > > > > code no better than utempter) appears to require root privilege   
   > > > > (which of course is a big step backwards).   
   > > >    
   > > > As I understand the doc, software should not call systemd directly,   
   > > > but should use PAM, and more specifically, pam_systemd:   
   > > >    
   > > >   pam_systemd - Register user sessions in the systemd login manager   
   > > >    
   > > > Then, concerning the needed permissions, isn't this controlled by   
   > > > PAM configuration?   
   > >    
   > > presumably - but ultimately it's a matter of authentication.   
   > > How do you suppose xterm would accomplish that?   
   >    
   > I don't know how this works, but I'm wondering why you mentioned   
   > authentication. The only thing that should be used concerning the   
   > user is the PID of the process.   
      
   man pam:   
      
          pam - Pluggable Authentication Modules Library   
      
   ...   
      
   DESCRIPTION   
          PAM is a system of libraries that handle the authentication tasks of   
          applications (services) on the system. The library provides a stable   
          general interface (Application Programming Interface - API) that   
          privilege granting programs (such as login(1) and su(1)) defer to to   
          perform standard authentication tasks.   
      
   I'd suppose PAM wants more than a process-id,   
   and am asking how you suppose that could be accomplished.   
      
   --    
   Thomas E. Dickey    
   https://invisible-island.net   
      
   -----BEGIN PGP SIGNATURE-----   
      
   iQGzBAABCgAdFiEEGYgtkt2kxADCLA1WzCr0RyFnvgMFAmmLy28ACgkQzCr0RyFn   
   vgN9HQwAw2Oi6HTQMyI8A3dD51tYzfTLOf8ynTiCjTpOzqHOTZyMHKmvHt3V8Spo   
   036ykY2vaZwwtTCHhSEXZjSjneoIpUP8w1tW7WcKDjI9EVGD96G6qH6UZor4Tlj0   
   IS/2BcDOpDCyBsikyBTp7TucOkYR2xuzkVCSsialPVqFjvSke5EjF73rnCnnZ1T3   
   4IUR57n20poLUorsoqvmcZlzPZ3Uclq5ZieCMSmBI6zbiHpa/l7Xk7pbyVbAZWt6   
   FIgND2Qi7fMhYastwYufY1Fq8b0chg9uFogbCTn1YoqsKbPU2ZXMwmfzVkmlXi3o   
   pwg/1Gox1ztfjgMWIQtdnzMED3RS6Ya/8meDo49RtROO0dkD6QhZv1bRjTtceJAU   
   4kSpKNS3dWVxAS+DApsmG1IBzyTTH7hE/qDH/Wzv7+uPvihM4Uy7EP7T59/p1GZc   
   FvHP98ib7zatxw4iL92coZC58W+Fe5NtrFOma8haJbRqFamZeK9f0JnJMU6SJsTN   
   CNpLI9Et   
   =4zqy   
   -----END PGP SIGNATURE-----   
      
   --- SoupGate-Win32 v1.05   
    * Origin: you cannot sedate... all the things you hate (1:229/2)   

[   << oldest   |   < older   |   list   |   newer >   |   newest >>   ]


(c) 1994,  bbs@darkrealms.ca