You are correct in your assumptions. Regarding XAUTHORITY (with pam_xauth in su):
logging in at the machine, this is what I find: before su: [emat...@aerogold ~]$ echo $XAUTHORITY /var/run/gdm/auth-for-ematlis-s3Q2Bx/database after su: [r...@aerogold ematlis]# echo $XAUTHORITY /root/.xauth0zKXoW However, after logging into the machine remotely: before su: [emat...@aerogold ~]$ echo $XAUTHORITY XAUTHORITY: Undefined variable. after su: [r...@aerogold ematlis]# echo $XAUTHORITY (gives blank line). eric --- On Thu, 3/18/10, Ken Hornstein <[email protected]> wrote: > From: Ken Hornstein <[email protected]> > Subject: Re: [OpenAFS] significant delay for afs user to login as root via su > To: [email protected] > Cc: [email protected] > Date: Thursday, March 18, 2010, 9:00 AM > >No, I do not. > > So, let me understand you _completely_. > > When pam_xauth.so is in /etc/pam.d/su, and when you log in > on the console: > > - "tokens" shows AFS tokens _before_ you su. > - There is no delay for "su". > - "tokens" shows no AFS tokens _after_ you su. > > When pam_xauth.so is in /etc/pam.d/su, and when you log in > REMOTELY: > > - "tokens" shows AFS tokens _before_ you su. > - There IS a delay for "su". > - "tokens" shows no AFS tokens _after_ you su. > > Hmmm .... waitaminute. When you log into the console, > what is the value > of the XAUTHORITY environment variable? Does it point > to a file in your > AFS home directory, or somewhere else? > > --Ken > _______________________________________________ > OpenAFS-info mailing list > [email protected] > https://lists.openafs.org/mailman/listinfo/openafs-info > _______________________________________________ OpenAFS-info mailing list [email protected] https://lists.openafs.org/mailman/listinfo/openafs-info
