[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#40550: zsh: sudo is not setuid
|
From: |
Efraim Flashner |
|
Subject: |
bug#40550: zsh: sudo is not setuid |
|
Date: |
Sat, 11 Apr 2020 22:38:21 +0300 |
On Sat, Apr 11, 2020 at 01:10:17PM +0300, Alexandru-Sergiu Marton wrote:
> Hi,
>
> I changed my default shell to zsh with the following line added to
> my user-account record in my config.scm:
>
> (shell #~(string-append #$zsh "/bin/zsh"))
>
> After reconfiguring the system and rebooting, when I try to run sudo or
> su (I guess this problem appears for every thing in %setuid-programs), I
> get a message saying it isn't actually a setuid program.
>
> I'm writing this from a reconfigured system started at the same point as
> the zsh one started, but with bash. Here I don't have that problem --
> setuid programs work as expected.
>
> Steps to reproduce:
> - $ guix pull
> - Change the default shell to zsh in your config.scm, as presented
> above.
> - $ sudo guix system reconfigure config.scm
> - Reboot.
> - Try to run sudo or su. It should give you an error.
Do you have sudo installed in a profile? /run/setuid-programs/sudo
should be the first 'sudo' in your PATH regardless of the shell. What's
the contents of your $PATH?
(ins)efraim@E5400 ~$ which -a sudo
/run/setuid-programs/sudo
/run/current-system/profile/bin/sudo
(ins)efraim@E5400 ~$ guix environment --ad-hoc zsh
substitute: updating substitutes from 'http://192.168.1.183:3000'... 100.0%
substitute: updating substitutes from 'http://192.168.1.217:3000'... 100.0%
substitute: updating substitutes from 'https://ci.guix.gnu.org'... 100.0%
substitute: updating substitutes from 'https://bayfront.guix.gnu.org'... 100.0%
The following derivation will be built:
/gnu/store/yfqfk66vl1s6av45a92ml5l60d2kaxyk-profile.drv
2.1 MB will be downloaded:
/gnu/store/icyx0ynnaaradzzxfqyjrwy0x545zdn5-zsh-5.8
The following profile hooks will be built:
/gnu/store/8kim2ay78nrlgpdks734hridk21waxhc-fonts-dir.drv
/gnu/store/fxdkr919viih72p9s2zkiadgj7r182d1-info-dir.drv
/gnu/store/ml3s254v7zf4dmwmfpc59clr0xgllsbn-ca-certificate-bundle.drv
/gnu/store/rvd1xybadpnzwlm1qz7iqcsky1dj2myw-manual-database.drv
downloading from
https://ci.guix.gnu.org/nar/lzip/icyx0ynnaaradzzxfqyjrwy0x545zdn5-zsh-5.8...
zsh-5.8 2.0MiB 1.6MiB/s 00:01
[##################] 100.0%
building CA certificate bundle...
building fonts directory...
building directory of Info manuals...
building database for manual pages...
building profile with 1 package...
(ins)efraim@E5400 ~ [env]$ zsh
E5400% which -a sudo
/run/setuid-programs/sudo
/run/current-system/profile/bin/sudo
--
Efraim Flashner <address@hidden> אפרים פלשנר
GPG key = A28B F40C 3E55 1372 662D 14F7 41AA E7DC CA3D 8351
Confidentiality cannot be guaranteed on emails sent or received unencrypted
signature.asc
Description: PGP signature
- bug#40550: zsh: sudo is not setuid, Alexandru-Sergiu Marton, 2020/04/11
- bug#40550: zsh: sudo is not setuid,
Efraim Flashner <=
- bug#40550: zsh: sudo is not setuid, Alexandru-Sergiu Marton, 2020/04/13
- bug#40550: zsh: sudo is not setuid, Alexandru-Sergiu Marton, 2020/04/13
- bug#40550: zsh: sudo is not setuid, Leo Famulari, 2020/04/13
- bug#40550: zsh: sudo is not setuid, Leo Famulari, 2020/04/13
- bug#40550: zsh: sudo is not setuid, Alexandru-Sergiu Marton, 2020/04/17
- bug#40550: zsh: sudo is not setuid, Alexandru-Sergiu Marton, 2020/04/17
- bug#40550: zsh: sudo is not setuid, Efraim Flashner, 2020/04/17