From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from mp12.migadu.com ([2001:41d0:8:6d80::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by ms9.migadu.com with LMTPS id kH4WDdPkR2Qy+AAASxT56A (envelope-from ) for ; Tue, 25 Apr 2023 16:33:55 +0200 Received: from aspmx1.migadu.com ([2001:41d0:8:6d80::]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)) by mp12.migadu.com with LMTPS id uCUBDdPkR2TrUQAAauVa8A (envelope-from ) for ; Tue, 25 Apr 2023 16:33:55 +0200 Received: from lists.gnu.org (lists.gnu.org [209.51.188.17]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by aspmx1.migadu.com (Postfix) with ESMTPS id DBC5C1F4C8 for ; Tue, 25 Apr 2023 16:33:54 +0200 (CEST) Received: from localhost ([::1] helo=lists1p.gnu.org) by lists.gnu.org with esmtp (Exim 4.90_1) (envelope-from ) id 1prJjN-00016c-SK; Tue, 25 Apr 2023 10:33:21 -0400 Received: from eggs.gnu.org ([2001:470:142:3::10]) by lists.gnu.org with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.90_1) (envelope-from ) id 1prJjJ-00015t-Pb for guix-devel@gnu.org; Tue, 25 Apr 2023 10:33:18 -0400 Received: from sail-ipv4.us-core.com ([208.82.101.137]) by eggs.gnu.org with esmtps (TLS1.2:ECDHE_RSA_CHACHA20_POLY1305:256) (Exim 4.90_1) (envelope-from ) id 1prJj7-0006dP-QN for guix-devel@gnu.org; Tue, 25 Apr 2023 10:33:12 -0400 DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; s=2017; bh=+w1D+G2BkRZz6gY eNJQfGzpxVOyf+ExYF+JJ+vpQYdw=; h=cc:to:subject:date:from:in-reply-to: references; d=lease-up.com; b=KPEF0PgVpzIwqrzwjZwoCFMHEJxht0RzpwbEfbjt IoVgTGJxreBzrvTS0g40RtRH+J9OtzzwgRQsV5Ixb1W/Xi/IpWnoqShXHFoWCWNUO2jjzg V++DlpcyeYfb5b1GUEtrmY9cniX6yf68dHPuabdUKnBKp5t34TXYC9/PJqyVA= Received: by sail-ipv4.us-core.com (OpenSMTPD) with ESMTPSA id 392fc8bf (TLSv1.3:TLS_CHACHA20_POLY1305_SHA256:256:NO) for ; Tue, 25 Apr 2023 14:32:58 +0000 (UTC) Received: by mail-lf1-f41.google.com with SMTP id 2adb3069b0e04-4eed6ddcae1so25303776e87.0 for ; Tue, 25 Apr 2023 07:32:58 -0700 (PDT) X-Gm-Message-State: AAQBX9dy3xdlxmf1YkeGTxref01PY37W1M/1UhBNJsxPqqEuZ19bEOFt EupINGoai8xP7YsSGabA3YmfM8Pew2Q/in91iSo= X-Google-Smtp-Source: AKy350ZmgAD7NxyeFknR0mR/N1eOJvJU+vqlGQTeEIO/1Lvoc/WFV+1Dztn/TSAbPXY/V6SjtViW3tm0jEAuAW4E29o= X-Received: by 2002:a2e:8602:0:b0:2a7:6812:eda1 with SMTP id a2-20020a2e8602000000b002a76812eda1mr3880019lji.8.1682433176369; Tue, 25 Apr 2023 07:32:56 -0700 (PDT) MIME-Version: 1.0 References: <87354otagp.fsf@jpoiret.xyz> In-Reply-To: <87354otagp.fsf@jpoiret.xyz> Date: Tue, 25 Apr 2023 07:32:19 -0700 X-Gmail-Original-Message-ID: Message-ID: Subject: Re: Setuid handling? To: Josselin Poiret Cc: Guix Devel Content-Type: text/plain; charset="UTF-8" Content-Transfer-Encoding: quoted-printable Received-SPF: pass client-ip=208.82.101.137; envelope-from=felix.lechner@lease-up.com; helo=sail-ipv4.us-core.com X-Spam_score_int: -20 X-Spam_score: -2.1 X-Spam_bar: -- X-Spam_report: (-2.1 / 5.0 requ) BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, T_SCC_BODY_TEXT_LINE=-0.01 autolearn=ham autolearn_force=no X-Spam_action: no action X-BeenThere: guix-devel@gnu.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "Development of GNU Guix and the GNU System distribution." List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Reply-to: Felix Lechner From: Felix Lechner via "Development of GNU Guix and the GNU System distribution." Errors-To: guix-devel-bounces+larch=yhetil.org@gnu.org Sender: guix-devel-bounces+larch=yhetil.org@gnu.org X-Migadu-Flow: FLOW_IN X-Migadu-Country: US ARC-Seal: i=1; s=key1; d=yhetil.org; t=1682433234; a=rsa-sha256; cv=none; b=cyG15PBExfCDA6mtdMXy2tudrw8f8EppmltxbIlgd+2zkLJa2sUBlNTpbo9qVenesRzo9R dopc7/c1VwBCIPbm6Jn9i6sj2XX4AICv+w9Px/3m8g6x+xvJ4rNXCYFFv7NM7sTbsC65NJ 9Y2AtF9+EIHIEt3BrjLeXGGJPmBpy9zgaW7KoDfb9FqDphz6rlGlVjc5D2/70sXcyGoF8x HrT5GA17+pQmGUkoHUVLYlkB6pw1vJB9rxnxNsp51lB/jRZWMX9YX9GEMwmLTWtilHIE4a E0pi0Nr63MFTBNJFm51ldIr8taUU5xDw1cKn4N+H8PfiqaHaYFJ+9lc41ahBxQ== ARC-Authentication-Results: i=1; aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=lease-up.com header.s=2017 header.b=KPEF0PgV; dmarc=pass (policy=none) header.from=gnu.org; spf=pass (aspmx1.migadu.com: domain of "guix-devel-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="guix-devel-bounces+larch=yhetil.org@gnu.org" ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=yhetil.org; s=key1; t=1682433234; h=from:from:sender:sender:reply-to:reply-to:subject:subject:date:date: message-id:message-id:to:to:cc:cc:mime-version:mime-version: content-type:content-type: content-transfer-encoding:content-transfer-encoding: in-reply-to:in-reply-to:references:references:list-id:list-help: list-unsubscribe:list-subscribe:list-post:dkim-signature; bh=RkgBJTDTJfbrUklG6piyDHMgycJqrWDaWgW2E3zuyho=; b=gTbTKbMtE/BuxK2mmCya9u+pj+unvLI4Jvh4wDoIvDMZkjvytBV+vQijgqXSQSSan7/254 oqPqhKC2GhFqtfwZBcudMwLc3yr9gQ9jExT6xAasWQTS0/5CWBEHcmB8/J7EkmVZsdRRwx 1yWZf2u6k/jGgueGZNo4jrmfyrdeDb9c8Oga2m9aJppfyzMl7kPFRgzdm43X+wUxlAkRw4 Jekuni5Eo1dldPrJBzkMhVTn3VVpcoI2YCM8yaBWrbU2lsXbJM86Pfc/stMYJE824Vg68C CKf7wHICFgRoN+P3F+aW4PKaFR+MrGFTjjth4ZfJMfynM7rQ9T9ecOQWIbJ5nA== X-Migadu-Scanner: scn1.migadu.com Authentication-Results: aspmx1.migadu.com; dkim=fail ("headers rsa verify failed") header.d=lease-up.com header.s=2017 header.b=KPEF0PgV; dmarc=pass (policy=none) header.from=gnu.org; spf=pass (aspmx1.migadu.com: domain of "guix-devel-bounces+larch=yhetil.org@gnu.org" designates 209.51.188.17 as permitted sender) smtp.mailfrom="guix-devel-bounces+larch=yhetil.org@gnu.org" X-Migadu-Spam-Score: -2.51 X-Spam-Score: -2.51 X-Migadu-Queue-Id: DBC5C1F4C8 X-TUID: 0wkWHuYkbLCA Hi Josselin, On Tue, Apr 25, 2023 at 5:26=E2=80=AFAM Josselin Poiret w= rote: > > What is `command -v su` $ command -v su /home/lechner/.guix-home/profile/bin/su > and `ls /run/setuid-programs/`? Please see below for output. > Have you rebooted since reconfiguring? Yes, I have---at least twice. Thanks for looking into this! Kind regards Felix Lechner * * * $ ls -l /run/setuid-programs/ total 4236 -r-sr-xr-x 1 root root 55184 Apr 24 19:55 chfn -r-sr-xr-x 1 root root 73368 Apr 24 19:55 dbus-daemon-launch-helper -r-sr-xr-x 1 root root 35432 Apr 24 19:55 fusermount -r-sr-xr-x 1 root root 40560 Apr 24 19:55 fusermount3 -r-xr-sr-x 1 root smtpq 200904 Apr 24 19:55 mailq -r-xr-sr-x 1 root smtpq 200904 Apr 24 19:55 makemap -r-sr-xr-x 1 root root 56576 Apr 24 19:55 mount -r-xr-sr-x 1 root smtpq 200904 Apr 24 19:55 newaliases -r-sr-xr-x 1 root root 51664 Apr 24 19:55 newgidmap -r-sr-xr-x 1 root root 37176 Apr 24 19:55 newgrp -r-sr-xr-x 1 root root 51632 Apr 24 19:55 newuidmap -r-sr-xr-x 1 root root 64824 Apr 24 19:55 passwd -r-sr-xr-x 1 root root 70536 Apr 24 19:55 ping -r-sr-xr-x 1 root root 61352 Apr 24 19:55 ping6 -r-sr-xr-x 1 root root 32536 Apr 24 19:55 pkexec -r-sr-xr-x 1 root root 22048 Apr 24 19:55 polkit-agent-helper-1 -r-xr-sr-x 1 root smtpq 200904 Apr 24 19:55 send-mail -r-xr-sr-x 1 root smtpq 200904 Apr 24 19:55 sendmail -r-sr-xr-x 1 root root 37176 Apr 24 19:55 sg -r-xr-sr-x 1 root smtpq 200904 Apr 24 19:55 smtpctl -r-sr-xr-x 1 root root 45848 Apr 24 19:55 su -r-sr-xr-x 1 root root 265032 Apr 24 19:55 sudo -r-sr-xr-x 1 root root 265032 Apr 24 19:55 sudoedit -r-sr-xr-x 1 root root 35832 Apr 24 19:55 umount -r-sr-xr-x 1 root root 1776328 Apr 24 19:55 xlock