[Bug 315591] Re: LD_LIBRARY_PATH set in ~/.profile doesn't stick
So the setgid bit which causes this effect is actually on purpose; from README.Debian: Setgid ssh-agent and environment variables -- As of version 1:3.5p1-1, ssh-agent is installed setgid to prevent ptrace() attacks retrieving private key material. This has the side-effect of causing glibc to remove certain environment variables which might have security implications for set-id programs, including LD_PRELOAD, LD_LIBRARY_PATH, and TMPDIR. If you need to set any of these environment variables, you will need to do so in the program exec()ed by ssh-agent. This may involve creating a small wrapper script. ** Changed in: openssh (Ubuntu) Status: Confirmed = Won't Fix -- LD_LIBRARY_PATH set in ~/.profile doesn't stick https://bugs.launchpad.net/bugs/315591 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 315591] Re: LD_LIBRARY_PATH set in ~/.profile doesn't stick
** Changed in: openssh (Ubuntu) Status: New = Confirmed -- LD_LIBRARY_PATH set in ~/.profile doesn't stick https://bugs.launchpad.net/bugs/315591 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 315591] Re: LD_LIBRARY_PATH set in ~/.profile doesn't stick
As a workaround, I just comment out use-ssh-agent in /etc/X11/Xsession.options. As I use Xubuntu, the XFCE startup launches ssh-agent anyway, I am still able to use ssh-add with no loss of functionality. -- LD_LIBRARY_PATH set in ~/.profile doesn't stick https://bugs.launchpad.net/bugs/315591 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 315591] Re: LD_LIBRARY_PATH set in ~/.profile doesn't stick
Striping of some env vars such as LD_LIBRARY_PATH, LD_PRELOAD, or HOSTALIASES will happen automatically when calling a suid/sgid binary. I had this issue with xterm recently (sgid utmp) and I see that ssh- agent is mentionned here (sgid ssh). I don't know if it can easily be implemented in ssh-agent, but vte uses a helper for sgid tasks (/usr/lib/libvte9/gnome-pty-helper) which allows programs such as gnome-terminal to not be sgid. -- LD_LIBRARY_PATH set in ~/.profile doesn't stick https://bugs.launchpad.net/bugs/315591 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
[Bug 315591] Re: LD_LIBRARY_PATH set in ~/.profile doesn't stick
** Package changed: gdm (Ubuntu) = openssh (Ubuntu) ** Changed in: openssh (Ubuntu) Status: Incomplete = New ** Changed in: openssh (Ubuntu) Assignee: Ubuntu Desktop Bugs (desktop-bugs) = (unassigned) -- LD_LIBRARY_PATH set in ~/.profile doesn't stick https://bugs.launchpad.net/bugs/315591 You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to openssh in ubuntu. -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
