Mon May 27 21:03:52 2024
EVENTS
 FREE
SOFTWARE
INSTITUTE

POLITICS
JOBS
MEMBERS'
CORNER

MAILING
LIST

NYLXS Mailing Lists and Archives
NYLXS Members have a lot to say and share but we don't keep many secrets. Join the Hangout Mailing List and say your peice.

DATE 2015-08-01

HANGOUT

2024-05-27 | 2024-04-27 | 2024-03-27 | 2024-02-27 | 2024-01-27 | 2023-12-27 | 2023-11-27 | 2023-10-27 | 2023-09-27 | 2023-08-27 | 2023-07-27 | 2023-06-27 | 2023-05-27 | 2023-04-27 | 2023-03-27 | 2023-02-27 | 2023-01-27 | 2022-12-27 | 2022-11-27 | 2022-10-27 | 2022-09-27 | 2022-08-27 | 2022-07-27 | 2022-06-27 | 2022-05-27 | 2022-04-27 | 2022-03-27 | 2022-02-27 | 2022-01-27 | 2021-12-27 | 2021-11-27 | 2021-10-27 | 2021-09-27 | 2021-08-27 | 2021-07-27 | 2021-06-27 | 2021-05-27 | 2021-04-27 | 2021-03-27 | 2021-02-27 | 2021-01-27 | 2020-12-27 | 2020-11-27 | 2020-10-27 | 2020-09-27 | 2020-08-27 | 2020-07-27 | 2020-06-27 | 2020-05-27 | 2020-04-27 | 2020-03-27 | 2020-02-27 | 2020-01-27 | 2019-12-27 | 2019-11-27 | 2019-10-27 | 2019-09-27 | 2019-08-27 | 2019-07-27 | 2019-06-27 | 2019-05-27 | 2019-04-27 | 2019-03-27 | 2019-02-27 | 2019-01-27 | 2018-12-27 | 2018-11-27 | 2018-10-27 | 2018-09-27 | 2018-08-27 | 2018-07-27 | 2018-06-27 | 2018-05-27 | 2018-04-27 | 2018-03-27 | 2018-02-27 | 2018-01-27 | 2017-12-27 | 2017-11-27 | 2017-10-27 | 2017-09-27 | 2017-08-27 | 2017-07-27 | 2017-06-27 | 2017-05-27 | 2017-04-27 | 2017-03-27 | 2017-02-27 | 2017-01-27 | 2016-12-27 | 2016-11-27 | 2016-10-27 | 2016-09-27 | 2016-08-27 | 2016-07-27 | 2016-06-27 | 2016-05-27 | 2016-04-27 | 2016-03-27 | 2016-02-27 | 2016-01-27 | 2015-12-27 | 2015-11-27 | 2015-10-27 | 2015-09-27 | 2015-08-27 | 2015-07-27 | 2015-06-27 | 2015-05-27 | 2015-04-27 | 2015-03-27 | 2015-02-27 | 2015-01-27 | 2014-12-27 | 2014-11-27 | 2014-10-27 | 2014-09-27 | 2014-08-27 | 2014-07-27 | 2014-06-27 | 2014-05-27 | 2014-04-27 | 2014-03-27 | 2014-02-27 | 2014-01-27 | 2013-12-27 | 2013-11-27 | 2013-10-27 | 2013-09-27 | 2013-08-27 | 2013-07-27 | 2013-06-27 | 2013-05-27 | 2013-04-27 | 2013-03-27 | 2013-02-27 | 2013-01-27 | 2012-12-27 | 2012-11-27 | 2012-10-27 | 2012-09-27 | 2012-08-27 | 2012-07-27 | 2012-06-27 | 2012-05-27 | 2012-04-27 | 2012-03-27 | 2012-02-27 | 2012-01-27 | 2011-12-27 | 2011-11-27 | 2011-10-27 | 2011-09-27 | 2011-08-27 | 2011-07-27 | 2011-06-27 | 2011-05-27 | 2011-04-27 | 2011-03-27 | 2011-02-27 | 2011-01-27 | 2010-12-27 | 2010-11-27 | 2010-10-27 | 2010-09-27 | 2010-08-27 | 2010-07-27 | 2010-06-27 | 2010-05-27 | 2010-04-27 | 2010-03-27 | 2010-02-27 | 2010-01-27 | 2009-12-27 | 2009-11-27 | 2009-10-27 | 2009-09-27 | 2009-08-27 | 2009-07-27 | 2009-06-27 | 2009-05-27 | 2009-04-27 | 2009-03-27 | 2009-02-27 | 2009-01-27 | 2008-12-27 | 2008-11-27 | 2008-10-27 | 2008-09-27 | 2008-08-27 | 2008-07-27 | 2008-06-27 | 2008-05-27 | 2008-04-27 | 2008-03-27 | 2008-02-27 | 2008-01-27 | 2007-12-27 | 2007-11-27 | 2007-10-27 | 2007-09-27 | 2007-08-27 | 2007-07-27 | 2007-06-27 | 2007-05-27 | 2007-04-27 | 2007-03-27 | 2007-02-27 | 2007-01-27 | 2006-12-27 | 2006-11-27 | 2006-10-27 | 2006-09-27 | 2006-08-27 | 2006-07-27 | 2006-06-27 | 2006-05-27 | 2006-04-27 | 2006-03-27 | 2006-02-27 | 2006-01-27 | 2005-12-27 | 2005-11-27 | 2005-10-27 | 2005-09-27 | 2005-08-27 | 2005-07-27 | 2005-06-27 | 2005-05-27 | 2005-04-27 | 2005-03-27 | 2005-02-27 | 2005-01-27 | 2004-12-27 | 2004-11-27 | 2004-10-27 | 2004-09-27 | 2004-08-27 | 2004-07-27 | 2004-06-27 | 2004-05-27 | 2004-04-27 | 2004-03-27 | 2004-02-27 | 2004-01-27 | 2003-12-27 | 2003-11-27 | 2003-10-27 | 2003-09-27 | 2003-08-27 | 2003-07-27 | 2003-06-27 | 2003-05-27 | 2003-04-27 | 2003-03-27 | 2003-02-27 | 2003-01-27 | 2002-12-27 | 2002-11-27 | 2002-10-27 | 2002-09-27 | 2002-08-27 | 2002-07-27 | 2002-06-27 | 2002-05-27 | 2002-04-27 | 2002-03-27 | 2002-02-27 | 2002-01-27 | 2001-12-27 | 2001-11-27 | 2001-10-27 | 2001-09-27 | 2001-08-27 | 2001-07-27 | 2001-06-27 | 2001-05-27 | 2001-04-27 | 2001-03-27 | 2001-02-27 | 2001-01-27 | 2000-12-27 | 2000-11-27 | 2000-10-27 | 2000-09-27 | 2000-08-27 | 2000-07-27 | 2000-06-27 | 2000-05-27 | 2000-04-27 | 2000-03-27 | 2000-02-27 | 2000-01-27 | 1999-12-27

Key: Value:

Key: Value:

MESSAGE
DATE 2015-08-31
FROM Ruben Safir
SUBJECT Subject: [NYLXS - HANGOUT] systemd su


Lennart Poettering merged “su” command replacement into systemd: Test
Drive on Fedora Rawhide


https://tlhp.cf/lennart-poettering-su/


Lennart Poettering merged “su” command replacement into systemd: Test
Drive on Fedora Rawhide

With this pull request
systemd now support a |su| command functional and can create privileged
sessions, that are fully isolated from the original session. |Su| is a
classic UNIX command and used more than 30 years. Why |su| is bad?
Lennart Poettering
says :

Well, there have been long discussions about this, but the problem
is that what *su* is supposed to do is very unclear. On one hand
it’s supposed to open a new session and change a number of execution
context parameters (*uid*, *gid*, *env*, …), and on the other it’s
supposed to inherit a lot concepts from the originating session
(*tty*, *cgroup*, *audit*, …). Since this is so weakly defined it’s
a really weird mix&match of old and new paramters. To keep this
somewhat managable we decided to only switch the absolute minimum
over, and that excludes *XDG_RUNTIME_DIR*, specifically because
*XDG_RUNTIME_DIR* is actually bound to the *session/audit* runtime
and those we do not transition. Instead we simply unset it.

Long story short: *su* is really a broken concept. It will given
you kind of a shell, and it’s fine to use it for that, but it’s not
a full login, and shouldn’t be mistaken for one.

THis has come up many times, but nothing really changed, hence
closing this now. I understand this is confusing and unexpected, but
well, that’s UNIX…

New feature included in latest version of systemd and we cat test it now:

|$ cat /etc/os-release
NAME=Fedora VERSION="24 (Workstation Edition)"
ID=fedora
VERSION_ID=24
PRETTY_NAME="Fedora 24 (Workstation Edition)"
ANSI_COLOR="0;34"
CPE_NAME="cpe:/o:fedoraproject:fedora:24"
HOME_URL="https://fedoraproject.org/"
BUG_REPORT_URL="https://bugzilla.redhat.com/"
REDHAT_BUGZILLA_PRODUCT="Fedora"
REDHAT_BUGZILLA_PRODUCT_VERSION=Rawhide
REDHAT_SUPPORT_PRODUCT="Fedora"
REDHAT_SUPPORT_PRODUCT_VERSION=Rawhide
PRIVACY_POLICY_URL=https://fedoraproject.org/wiki/Legal:PrivacyPolicy
VARIANT="Workstation Edition"
VARIANT_ID=workstation

$systemctl --version
systemd 225
+PAM +AUDIT +SELINUX +IMA -APPARMOR +SMACK +SYSVINIT +UTMP +LIBCRYPTSETUP +GCRYPT +GNUTLS +ACL +XZ -LZ4 +SECCOMP +BLKID +ELFUTILS +KMOD +IDN|

Fedora Rawhide

Fedora Rawhide



Login as superuser without |su|:

|$ machinectl shell
Connected to the local host. Press ^] three times within 1s to exit session.
sh-4.3# id
uid=0(root) gid=0(root) groups=0(root) context=unconfined_u:unconfined_r:unconfined_t:s0
sh-4.3# whoami
root
sh-4.3#|

Login with machineclt

Login with machinectl



It works! We can work as superuser. And isn’t end: we can also set shell
and host:

|$ machinectl shell root-at-.host /bin/bash
Connected to the local host. Press ^] three times within 1s to exit session.
[root-at-localhost /]# id
uid=0(root) gid=0(root) groups=0(root) context=unconfined_u:unconfined_r:unconfined_t:s0|



Login as non-root user and set variable of shell environment:

|$ id
uid=1000(paul) gid=1000(paul) groups=1000(paul) context=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023
#1000 - UID of user `paul`
#SYSTEMD_TEST - test variable of user environment
$ machinectl shell --uid 1000 --setenv="SYSTEMD_TEST=777"
Connected to the local host. Press ^] three times within 1s to exit session. sh-4.3$ id uid=1000(paul) gid=1000(paul) groups=1000(paul) context=unconfined_u:unconfined_r:unconfined_t:s0
sh-4.3$ whoami
paul
sh-4.3$ export | grep -i systemd
export SYSTEMD_TEST="777"
sh-4.3$|

Great! Our variable is defined. More complicated trick (thanks to Igor
Gnatenko ):

|$ sudo systemd-run -p CPUQuota=50% -p PAMName=login -t /bin/bash -l|

We run new shell session and set CPU quota only 50% – very useful if you
have high load services.?

*Read also:*

KDE Plasma 5.4 and KDE Apps on Wayland Test Drive


18 Years of GNOME Design and Software Evolution: Step by Step


LibreOffice Design Evolution 3.3 – 5.0 (2011-2015)


KolibriOS Review – Free 1 MB Drive/8MB RAM Assembly OS


A Introduction to Tox — Free & Open Source messenger with audio/video
calls as Skype Alternative

Posted on

  1. 2015-08-02 Ruben Safir <mrbrklyn-at-panix.com> Re: [NYLXS - HANGOUT] does any pone know a good howto guide for
  2. 2015-08-02 Ron Guerin <ron-at-vnetworx.net> Re: [NYLXS - HANGOUT] does any pone know a good howto guide for
  3. 2015-08-02 Chris Knadle <Chris.Knadle-at-coredump.us> Re: [NYLXS - HANGOUT] does any pone know a good howto guide for
  4. 2015-08-03 Paul Robert Marino <prmarino1-at-gmail.com> Re: [NYLXS - HANGOUT] does any pone know a good howto guide for
  5. 2015-08-04 Ruben <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] worth a laugh
  6. 2015-08-05 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] movie of the week
  7. 2015-08-05 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] techsupport today
  8. 2015-08-05 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] All that is wrong with NYC now
  9. 2015-08-05 Ruben Safir <mrbrklyn-at-panix.com> Re: [NYLXS - HANGOUT] All that is wrong with NYC now
  10. 2015-08-05 Ruben Safir <mrbrklyn-at-panix.com> Re: [NYLXS - HANGOUT] All that is wrong with NYC now
  11. 2015-08-05 Ruben Safir <mrbrklyn-at-panix.com> Re: [NYLXS - HANGOUT] All that is wrong with NYC now
  12. 2015-08-05 mrbrklyn-at-panix.com Subject: [NYLXS - HANGOUT] [q.brown-at-ieee.org: 2015 Top Programming Languages Rankings by IEEE
  13. 2015-08-05 Ron Guerin <ron-at-vnetworx.net> Re: [NYLXS - HANGOUT] [q.brown-at-ieee.org: 2015 Top Programming
  14. 2015-08-06 Rick Moen <rick-at-linuxmafia.com> Re: [NYLXS - HANGOUT] movie of the week
  15. 2015-08-07 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] Fwd: [NJLinux] Software Freedom Day
  16. 2015-08-07 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] Fwd: Invitation: MOVIE - Hubble (IMAX)
  17. 2015-08-07 Rick Moen <rick-at-linuxmafia.com> Re: [NYLXS - HANGOUT] Fwd: [NJLinux] Software Freedom Day
  18. 2015-08-07 Rick Moen <rick-at-linuxmafia.com> Re: [NYLXS - HANGOUT] Fwd: [NJLinux] Software Freedom Day
  19. 2015-08-09 Ruben Safir <mrbrklyn-at-panix.com> Re: [NYLXS - HANGOUT] Fwd: [NJLinux] Software Freedom Day
  20. 2015-08-10 mrbrklyn-at-panix.com Subject: [NYLXS - HANGOUT] [gabor-at-szabgab.com: [Perlweekly] #211 - CPAN Day is Sunday 16th
  21. 2015-08-13 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] Fwd: Invitation: Space Frontier Foundation East Coast Regional Competition
  22. 2015-08-13 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] wintel privacy
  23. 2015-08-14 Chris Knadle <Chris.Knadle-at-coredump.us> Re: [NYLXS - HANGOUT] wintel privacy
  24. 2015-08-14 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] Fwd: 2015 IEEE MIT Undergraduate Research Technology Conference
  25. 2015-08-16 mrbrklyn-at-panix.com Subject: [NYLXS - HANGOUT] job possibilities
  26. 2015-08-16 mrbrklyn-at-panix.com Subject: [NYLXS - HANGOUT] Double Talking Bullshit
  27. 2015-08-18 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] openhardware
  28. 2015-08-20 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] Hulu has been blanked out
  29. 2015-08-22 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] First good news on the privacy front
  30. 2015-08-23 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] Movie of the Week
  31. 2015-08-26 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] Privacy Wars
  32. 2015-08-26 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] making an iso or hard drive image file
  33. 2015-08-27 Rick Moen <rick-at-linuxmafia.com> Re: [NYLXS - HANGOUT] making an iso or hard drive image file
  34. 2015-08-27 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] History of NYC
  35. 2015-08-31 Ruben Safir <mrbrklyn-at-panix.com> Subject: [NYLXS - HANGOUT] systemd su

NYLXS are Do'ers and the first step of Doing is Joining! Join NYLXS and make a difference in your community today!