Anton Aylward wrote:
On 05/28/2015 01:03 AM, Andrei Borzenkov wrote:
В Wed, 27 May 2015 15:06:01 -0700 Linda Walsh <suse@tlinx.org> пишет:
tried editing a file as root:
sudo gvim /etc/fstab Error detected while processing /usr/share/vim/vim74/menu.vim: line 354: E327: Part of menu-item path is not sub-menu E233: cannot open display Default sudo configuration in openSUSE does not preserve DISPLAY environment variable.
Indeed. Cracked record time.
Sorry, should have included the relevant parts of that here as well. I thought that would have been obvious if it worked in 13.1... ## ## Defaults specification ## ## Prevent environment variables from influencing programs in an ## unexpected or harmful way (CVE-2005-2959, CVE-2005-4158, CVE-2006-0151) ##Defaults always_set_home ##Defaults env_reset Defaults !syslog Defaults !env_reset Defaults !always_set_home Defaults !env_delete Defaults !env_check ## Change env_reset to !env_reset in previous line to keep all environment variables ## Following list will no longer be necessary after this change Defaults env_keep = "LANG LC_ADDRESS LC_CTYPE LC_COLLATE LC_IDENTIFICATION LC_MEASUREMENT LC_MESSAGES LC_MONETARY LC_NAME LC_NUMERIC LC_PAPER LC_TELEPHONE LC_TIME LC_ALL LANGUAGE LINGUAS XDG_SESSION_COOKIE" #Defaults closefrom_override Defaults closefrom=65535 Defaults !ignore_dot Defaults preserve_groups Defaults fast_glob Defaults !set_logname Defaults setenv Defaults shell_noargs Defaults !logfile Defaults exempt_group="lawgroup" Defaults !log_output Defaults umask=777 Defaults editor="/usr/bin/gvim -f:/usr/bin/vim" and under users: root ALL=(ALL) NOPASSWD: SETENV: ALL law ALL=(ALL) NOPASSWD: SETENV: ALL Bliss\\law ALL=(ALL) NOPASSWD: SETENV: ALL Bliss\\root ALL=(ALL) NOPASSWD: SETENV: ALL BLISS\\root ALL=(ALL) NOPASSWD: SETENV: ALL BLISS\\law ALL=(ALL) NOPASSWD: SETENV: ALL Same sudoer's file is present ... I've verified the problem disappears if I re-install 13.1. I dumped 'env' before and after sudo in 13.1, and in 13.2. Only difference is in 13.2 DISPLAY/REMOTE host are zero'ed and my 'common_session has pam_env commented out. It's no more useful to zero out DISPLAY than TERM or any of the LC vars -- and since it is usually generated from REMOTE_HOST (pam sets it at system-entry points) that should stay throughout a login session. It's not like I don't want to see my DISPLAY when I do root administration. my 'pam_env.conf' is the same in 13.1 and 13.2, so I'm not sure where the corruption is happening -- maybe really is a bug in sudo ... dunno... I might try their latest source too.. -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org To contact the owner, e-mail: opensuse+owner@opensuse.org