[2309] in Kerberos_V5_Development
krb5-appl/326: Solution for Athena
daemon@ATHENA.MIT.EDU (Sam Hartman)
Tue Mar 18 12:44:11 1997
Date: Tue, 18 Mar 1997 12:43:12 -0500 (EST)
From: Sam Hartman <hartmans@MIT.EDU>
To: krb5-bugs@MIT.EDU
Cc: ghudson@MIT.EDU, krbdev@MIT.EDU
It has become apparent that this bug (login not setting HOME,
etc) is annoying for the Athena 8.1 release. My previous patch
eleviates most of the problem, but replaces it with another annoying
behavior.
If inetd or klogind in debug is started with a environment
containing user variables, these variables are preserved when klogind
calls login, and because the -p option is used to login, by login
itself. Thus, the user logging in gets some of the environment
variables of whoever ran inetd.
Unfortunately, we (Kerberos) cannot remove -p from the call to
login because if we do so, TERM will not be preserved by login.krb5 or
some of the vendor logins. I propose to fix this in the following
manner:
* I will add support to login.krb5 to preserve the TERM variable
without the -p option for the patch1 release.
* For patch1, krb5 will continue to pass -p from klogind to
login.krb5, so that vendor logins can be used.
* Athena 8.1 will include a local modification to klogind to remove
the -p option, since Athena will always use login.krb5.
* A future version of klogind will scrub the environment before
calling login, preserving TERM.
