[14709] in Athena Bugs
8.0J sparc: login doesn't do logindevperm(4)
daemon@ATHENA.MIT.EDU (John Hawkinson)
Sat Sep 28 02:33:33 1996
Date: Sat, 28 Sep 1996 02:33:13 -0400
To: bugs@MIT.EDU
From: John Hawkinson <jhawk@MIT.EDU>
/usr/bin/login doesn't a number of the things that the vendor Solaris
login program does. This includes chown()ing the devices listed in
/etc/logindevperm (see logindevperm(4)) to the user logging in.
[I was going to reply to transaction [14687] in Bugs suggesting the
user simply start the X server by himself, but this isn't practical
given the current state of things].
The long and short of this is you cannot hit ^P ffrom xlogin to get a
console login, login, and start the X server by hand. Instead you
need to su to root to do it.
Also, the permissions of the X server are kind
of questionable:
[bart-savagewood!jhawk] /usr/bin# ls -l /usr/openwin/bin/Xsun
-rwxr-sr-x 1 root root 655576 Jan 4 1996 /usr/openwin/bin/Xsun
Does it really need to read anything in "group root", or is it setgid
root for some other reason?
Greg suggests a convenient approach might be for the Athea login
program to call the vendor login with the appropriate options to
indiacate that authorization had already taken place (Solaris, as is
typical, does not document these options in the manpage very well --
the getopt string appears to be "hrad:" but -a isn't mentioned in the
manpage. I suppose this is better than BSD O/Ss that use -p or -f and
don't document them at all). I'm not sure how practical this would be...
--jhawk
ps: trying to start the X server by hand on an Indy is a trip, too.
I think I'm not even going to try (more doesn't even work right in
console mode)
