From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.43) id 1EAI2b-0001Lb-2N for garchives@archives.gentoo.org; Wed, 31 Aug 2005 02:09:29 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.4/8.13.4) with SMTP id j7V2684N007530; Wed, 31 Aug 2005 02:06:08 GMT Received: from smtp.gentoo.org (smtp.gentoo.org [134.68.220.30]) by robin.gentoo.org (8.13.4/8.13.4) with ESMTP id j7V230Ml006586 for ; Wed, 31 Aug 2005 02:03:00 GMT Received: from main.gmane.org ([80.91.229.2] helo=ciao.gmane.org) by smtp.gentoo.org with esmtp (Exim 4.43) id 1EAHyR-0003J4-Ey for gentoo-dev@lists.gentoo.org; Wed, 31 Aug 2005 02:05:11 +0000 Received: from list by ciao.gmane.org with local (Exim 4.43) id 1EAHxu-0003Hz-UM for gentoo-dev@gentoo.org; Wed, 31 Aug 2005 04:04:38 +0200 Received: from dsl-082-082-127-049.arcor-ip.net ([82.82.127.49]) by main.gmane.org with esmtp (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 31 Aug 2005 04:04:38 +0200 Received: from skoehler by dsl-082-082-127-049.arcor-ip.net with local (Gmexim 0.1 (Debian)) id 1AlnuQ-0007hv-00 for ; Wed, 31 Aug 2005 04:04:38 +0200 X-Injected-Via-Gmane: http://gmane.org/ To: gentoo-dev@lists.gentoo.org From: =?ISO-8859-1?Q?Sven_K=F6hler?= Subject: [gentoo-dev] Re: init.d-scripts don't see stuff from /etc/profile.env Date: Wed, 31 Aug 2005 03:56:40 +0200 Message-ID: References: <200508301909.51972.vapier@gentoo.org> <200508302157.52550.vapier@gentoo.org> Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-dev@gentoo.org Reply-to: gentoo-dev@lists.gentoo.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="------------enigF0A74DA6AAA60A822353F721" X-Complaints-To: usenet@sea.gmane.org X-Gmane-NNTP-Posting-Host: dsl-082-082-127-049.arcor-ip.net User-Agent: Mozilla Thunderbird 1.0.6 (Windows/20050716) X-Accept-Language: de-DE, de, en-us, en In-Reply-To: <200508302157.52550.vapier@gentoo.org> X-Enigmail-Version: 0.92.0.0 Sender: news X-Archives-Salt: d451ecae-1be2-46d1-ba18-d964b626e679 X-Archives-Hash: 9c99c069aca3a8c8d47824036c65c4cf This is an OpenPGP/MIME signed message (RFC 2440 and 3156) --------------enigF0A74DA6AAA60A822353F721 Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit >>>init.d scripts should have a pure env given to them ... which means, they >>>should be run with `env -i` and have only whitelisted variables given to >>>them (and everything that appears in /etc/conf.d/$service /etc/conf.d/rc >>>and /etc/rc.conf) ... >> >>Now that may be too few variables. At least the variable LANG (or >>whatever the system-admin may chose to set) could be seen as a >>system-wide language-setting. It could be intentional, that at least >>some variables are available to the started server-processes. Especially >>a system-wide language-setting would be a good idea. > > that is the point of the whitelist idea ... we gather a 'full > env' (source /etc/profile i guess) and rip out just the whitelisted variables > to pass on to init scripts OK, you just didn't list /etc/profile in your first reply. The whitelist-thing is a good idea and makes it very flexible. --------------enigF0A74DA6AAA60A822353F721 Content-Type: application/pgp-signature; name="signature.asc" Content-Description: OpenPGP digital signature Content-Disposition: attachment; filename="signature.asc" -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.1 (Cygwin) Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org iD8DBQFDFQ5Y7Ww7FjRBE4ARAoBHAJ4pAaFJyT/Qn7GN0RtbnCFlwoAWBwCgx4d2 gBl6gjoifgr8M+L6gph/mAE= =LlJD -----END PGP SIGNATURE----- --------------enigF0A74DA6AAA60A822353F721-- -- gentoo-dev@gentoo.org mailing list