Reading the code as suggested by Sam, I see that everything after "=" and before a newline is copied into the environment using 'setenv()'. So no quote expansion is done. I'm not sure what the fix is, but there's certainly the possibility that programs will misinterpret this. I'm marking it as Confirmed in krb5. The simple fix would be to add very basic quote expansion. The code in pam that does this does not support escaped quotes, and is not exposed as an extermal library, so I think its safe to just copy that.
Marking Confirmed, also adding krb5-appl since it has been split out since 10.10. I'm attaching a patch which might solve it, but I am not sure how to test it. -- You received this bug notification because you are a member of Ubuntu Server Team, which is subscribed to krb5 in Ubuntu. https://bugs.launchpad.net/bugs/251795 Title: /etc/environment PATH should not have quotes To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/krb5/+bug/251795/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
