Scott Gardner wrote: > I don't know if this is a bug, but I'd appreciate it if you could explain > why the "groups" command doesn't return the correct list of groups if you > telnet into a SLES 9 machine.
This could be a local configuration issue specific to your machine. I could not recreate your problem on a SuSE machine upon which I tested your case. It worked fine for me. > "groups" command on SUSE LINUX Enterprise Server 9 (i586) -- VERSION = 9 > After I telnet into the machine, these command are run... > > [root wesdintel28]# id > uid=0(root) gid=0(root) groups=0(root) Okay. > [root wesdintel28]# groups > root Yep. > [root wesdintel28]# groups root > root : root mqm mqbrkrs The groups command is actually a shell script that will eventually run: id -Gn -- root What does that command say for you? Meanwhile, this will be affected by the following configuration: grep ^group /etc/nsswitch.conf It might say "files" or "files nis" or some such. In which case any of those may be providing this information. You may need to look in a few more places to see all of the configuration data. What does this say? grep root /etc/group > [root wesdintel28]# su - > [root wesdintel28]# groups > root mqm mqbrkrs Your auxiliary groups are set when the process is created. Apparently when you logged in with telnet the telnetd did not set up these two other auxilary groups for the process. The groups command is just reporting your current groups. This is really an issue for your telnetd setting up or not setting up your auxilary groups. I have not looked at the telnetd code for a long time but if I recall correctly it used either initgroups(2) or setgroups(2) to set up the initial groups. Looking at that documentation may reveal a clue to your system question. man initgroups man setgroups To tell the truth I think you should convert to using ssh instead of telnet, especially for a root login. Telnet passes the password through in the clear where it may be sniffed on the network by a cracker. Then they would have your root password. So even if there is some issue with telnetd I would just leave it behind. If it works fine for ssh then I would do that and not look back. Bob _______________________________________________ Bug-coreutils mailing list [email protected] http://lists.gnu.org/mailman/listinfo/bug-coreutils
