clone 349587 -1 unmerge -1 retitle -1 sudo should also preserve the SSH_AGENT_PID variable severity -1 important close 349587 1.6.8p12-2 thanks
On Wed, Apr 05, 2006 at 07:05:07PM +0200, Cyril Bouthors wrote: > The bug is still there with sudo 1.6.8p12-2: > > [EMAIL PROTECTED]:~$ echo $SSH_AGENT_PID > 4267 > [EMAIL PROTECTED]:~$ sudo -s > [EMAIL PROTECTED]:~# echo $SSH_AGENT_PID > > [EMAIL PROTECTED]:~# > > This makes the ssh client unable to run with sudo. It's useful to open > ssh tunnels on port <1024. This is not what the bug report you just reopened was about. That bug report was about other env variables, and about the fact that the security update was broken with respect to the documentation and required bizarre gyrations to get any env vars passed. Those bugs have all been fixed, which means that you can now export any other variables you want to with use of env_check in /etc/sudoers; e.g., env_check += SSH_AGENT_PID wanting SSH_AGENT_PID preserved by default seems like a valid request, but it is a separate bug and it doesn't seem to me that it warrants the same severity. -- Steve Langasek Give me a lever long enough and a Free OS Debian Developer to set it on, and I can move the world. [EMAIL PROTECTED] http://www.debian.org/
signature.asc
Description: Digital signature
