[Bug 801553] New: root cronjob switching user with "su - someone -c ..." results in "...killed."
https://bugzilla.novell.com/show_bug.cgi?id=801553 https://bugzilla.novell.com/show_bug.cgi?id=801553#c0 Summary: root cronjob switching user with "su - someone -c ..." results in "...killed." Classification: openSUSE Product: openSUSE 12.2 Version: Final Platform: Other OS/Version: openSUSE 12.2 Status: NEW Severity: Normal Priority: P5 - None Component: Basesystem AssignedTo: fcrozat@suse.com ReportedBy: suse-beta@cboltz.de QAContact: qa-bugs@suse.de Found By: Beta-Customer Blocker: --- I'm using the following (simplified) script in a cronjob running as root: #!/bin/bash su - someone -c 'foobar' # foobar shouldn't run as root foobar2 # foobar2 must run as root This worked without problems up to openSUSE 12.1. In openSUSE 12.2 it still works - but cron always mails me a line " ...killed." This looks similar to the issue described in bug 752424, but is still a different problem. To answer the most obvious question: # rpm -Vf /etc/pam.d/* |grep /etc/pam.d/ |sort -u ..L...... c /etc/pam.d/common-account ..L...... c /etc/pam.d/common-auth ..L...... c /etc/pam.d/common-password ..L...... c /etc/pam.d/common-session (+ some *-backup and *.old files not owned by any package) The 4 common-* symlins listed by rpm point to their *-pc counterpart (common-account-pc etc.) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=801553
https://bugzilla.novell.com/show_bug.cgi?id=801553#c1
--- Comment #1 from Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=801553
https://bugzilla.novell.com/show_bug.cgi?id=801553#c2
--- Comment #2 from Christian Boltz
https://bugzilla.novell.com/show_bug.cgi?id=801553
https://bugzilla.novell.com/show_bug.cgi?id=801553#c3
--- Comment #3 from Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=801553
https://bugzilla.novell.com/show_bug.cgi?id=801553#c4
--- Comment #4 from Christian Boltz
https://bugzilla.novell.com/show_bug.cgi?id=801553
https://bugzilla.novell.com/show_bug.cgi?id=801553#c5
--- Comment #5 from Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=801553
https://bugzilla.novell.com/show_bug.cgi?id=801553#c6
--- Comment #6 from Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=801553
https://bugzilla.novell.com/show_bug.cgi?id=801553#c7
Frederic Crozat
https://bugzilla.novell.com/show_bug.cgi?id=801553
https://bugzilla.novell.com/show_bug.cgi?id=801553#c8
Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=801553
https://bugzilla.novell.com/show_bug.cgi?id=801553#c9
--- Comment #9 from Bernhard Wiedemann
https://bugzilla.novell.com/show_bug.cgi?id=801553
https://bugzilla.novell.com/show_bug.cgi?id=801553#c10
--- Comment #10 from Christian Boltz
after digging a little more, patch cronie-pam_config.diff had incorrect "remove/added lines" info, which caused patch to not add the line "session include common-session" to /etc/pam.d/crond.
Tested by manually applying the patch to /etc/pam.d/crond - works :-) Thanks for fixing this! -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=801553
https://bugzilla.novell.com/show_bug.cgi?id=801553#c
Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=801553
https://bugzilla.novell.com/show_bug.cgi?id=801553#c12
--- Comment #12 from Swamp Workflow Management
participants (1)
-
bugzilla_noreply@novell.com