From owner-svn-src-all@freebsd.org Wed Feb 5 19:35:09 2020 Return-Path: Delivered-To: svn-src-all@mailman.nyi.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.nyi.freebsd.org (Postfix) with ESMTP id 4A20622BC57; Wed, 5 Feb 2020 19:35:09 +0000 (UTC) (envelope-from sigsys@gmail.com) Received: from mail-qk1-x72a.google.com (mail-qk1-x72a.google.com [IPv6:2607:f8b0:4864:20::72a]) (using TLSv1.3 with cipher TLS_AES_128_GCM_SHA256 (128/128 bits) server-signature RSA-PSS (4096 bits) client-signature RSA-PSS (2048 bits) client-digest SHA256) (Client CN "smtp.gmail.com", Issuer "GTS CA 1O1" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 48CWx734Znz42pl; Wed, 5 Feb 2020 19:35:07 +0000 (UTC) (envelope-from sigsys@gmail.com) Received: by mail-qk1-x72a.google.com with SMTP id g3so3091440qka.1; Wed, 05 Feb 2020 11:35:07 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=subject:to:cc:references:from:message-id:date:user-agent :mime-version:in-reply-to:content-transfer-encoding:content-language; bh=wXeW6uFxa459uTxZN29SPaT++zwynWAyB1nmNU3fiM8=; b=UekfiZRjNCxNk1RPK+el6HTecOYDk7Gr2+9cMg1kqSayCU6HYwqAFv+/zX3X/GVdXF OZ5yJzh0eiD21cdpyZXlqlxp+afICJQb1V2ZK3GSi2Sah70EPu06dldMA/eRhPN1L2gW v4yU8ssPR52tf/oq4eo4GCL2P1Sn+NwLusrLkdvEhUmmQOJShp7ZdNnMLuHBCt6XLRMy Xve9sLYxpkKdMkpmyiYOvnfi4M48xD6TDtO4uwKrtKD4xNcQR4lKboma+oxQA7qhF/Uj XodkpalYiifN8CDfOKFcbNpUSjd39msHuFLx7qmx1t50uBKFRCtMGxP+M5T1Yh1FXKXJ CCDw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:subject:to:cc:references:from:message-id:date :user-agent:mime-version:in-reply-to:content-transfer-encoding :content-language; bh=wXeW6uFxa459uTxZN29SPaT++zwynWAyB1nmNU3fiM8=; b=dKB6DBEu1ima+O4NYbU2UOh9yJm4ehOSX1sSKPGyfqAwjYjZlBBPlklEclMZuo0lQy H4VeBQ5KqDpNDGU2Ml1ah1Un3ftyid6R6qdt2ivqFzkbNcefZEg5Gs7R396a0DfvAjGi ciUjHbHsEct7MmkXNZ51S+8kbPtZCwsKzSgcZlMVyIlhbG5kxVNvNhf/fVKNRx2eVV8p 6g8mY9PIdmkOPwdQgK71sb/uyEPSBl6DtXQrYfjzZjs7DYjXvd5iCmxMqtR/8K3k3Edo wtGYoFxymI0HCoLBs5FaUsH5+meQLJ9HmP/7ZK5CyECn3ciuXXVYgSxdpCP1AJqBhyAy fhZA== X-Gm-Message-State: APjAAAW96K2cqmEMPIx0XXLLETq0mRqeikoFJxQ1tRDWT/EfMIooIrWn dKx/v1nSAVSKbTg94CquP+UoOtFO X-Google-Smtp-Source: APXvYqwuuosK1WP0a8nViV0KQWdGtU3zqfnqrc6dMG7XmrWY1AslBWzIAYMkzxPgGlmLzvTOjxvDUw== X-Received: by 2002:ae9:e50b:: with SMTP id w11mr35247678qkf.110.1580931306040; Wed, 05 Feb 2020 11:35:06 -0800 (PST) Received: from pavonis.lan ([38.133.25.146]) by smtp.gmail.com with ESMTPSA id b24sm370384qto.71.2020.02.05.11.35.04 (version=TLS1_3 cipher=TLS_AES_128_GCM_SHA256 bits=128/128); Wed, 05 Feb 2020 11:35:04 -0800 (PST) Subject: Re: svn commit: r357566 - head To: Andrew Gierth , Kyle Evans Cc: Ian Lepore , src-committers , svn-src-all , svn-src-head References: <202002050443.0154hwPl091233@repo.freebsd.org> <1c19eca5b40aa7b70b0c18b7b52b540671cc50dd.camel@freebsd.org> <874kw4ooqw.fsf@news-spur.riddles.org.uk> From: Mathieu Message-ID: <578cece7-90e4-afe3-b6e5-3b0961081942@gmail.com> Date: Wed, 5 Feb 2020 14:35:03 -0500 User-Agent: Mozilla/5.0 (X11; FreeBSD amd64; rv:68.0) Gecko/20100101 Thunderbird/68.4.2 MIME-Version: 1.0 In-Reply-To: <874kw4ooqw.fsf@news-spur.riddles.org.uk> Content-Type: text/plain; charset=utf-8; format=flowed Content-Transfer-Encoding: 8bit Content-Language: en-US X-Rspamd-Queue-Id: 48CWx734Znz42pl X-Spamd-Bar: -- Authentication-Results: mx1.freebsd.org; dkim=pass header.d=gmail.com header.s=20161025 header.b=UekfiZRj; dmarc=pass (policy=none) header.from=gmail.com; spf=pass (mx1.freebsd.org: domain of sigsys@gmail.com designates 2607:f8b0:4864:20::72a as permitted sender) smtp.mailfrom=sigsys@gmail.com X-Spamd-Result: default: False [-3.00 / 15.00]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36:c]; FREEMAIL_FROM(0.00)[gmail.com]; RCPT_COUNT_FIVE(0.00)[6]; RCVD_COUNT_THREE(0.00)[3]; TO_DN_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RECEIVED_SPAMHAUS_PBL(0.00)[146.25.133.38.khpj7ygk5idzvmvt5x4ziurxhy.zen.dq.spamhaus.net : 127.0.0.11]; FROM_EQ_ENVFROM(0.00)[]; MIME_TRACE(0.00)[0:+]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[]; DWL_DNSWL_NONE(0.00)[gmail.com.dwl.dnswl.org : 127.0.5.0]; ARC_NA(0.00)[]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; R_DKIM_ALLOW(-0.20)[gmail.com:s=20161025]; FROM_HAS_DN(0.00)[]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; MIME_GOOD(-0.10)[text/plain]; IP_SCORE(0.00)[ip: (-9.26), ipnet: 2607:f8b0::/32(-1.98), asn: 15169(-1.74), country: US(-0.05)]; IP_SCORE_FREEMAIL(0.00)[]; TO_MATCH_ENVRCPT_SOME(0.00)[]; RCVD_IN_DNSWL_NONE(0.00)[a.2.7.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.4.6.8.4.0.b.8.f.7.0.6.2.list.dnswl.org : 127.0.5.0]; RCVD_TLS_ALL(0.00)[] X-BeenThere: svn-src-all@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: "SVN commit messages for the entire src tree \(except for " user" and " projects" \)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 05 Feb 2020 19:35:09 -0000 On 2/5/20 2:05 PM, Andrew Gierth wrote: >>>>>> "Kyle" == Kyle Evans writes: > >> Unfortunately, the utility of this cool series of changes is mostly > >> destroyed by the fact that PATH is the variable that could be most > >> usefully set in login.conf for running daemons, specifically because > >> it is set in 3 separate places now. > > Kyle> It is (and has been) set in each of them respectively, but the > Kyle> submitter (along with sigsys@gmail.com) have some idea to accept > Kyle> a hint in cron (and perhaps the others) from login.conf that it > Kyle> should accept PATH as well unless it's been explicitly set in the > Kyle> executing job. > > Kyle> I've CC'd these two so they can expand on that or discuss as > Kyle> needed. > > I'd be quite happy to go along with a proposal to unconditionally set > PATH from login.conf in cron and elsewhere. > > (The idea of having a flag for it is just to avoid changing existing PATH > behavior without an explicit admin choice, to head off arguments about > security. If that's not an issue, then no need for the flag.) > If there are objections to using the "daemon" class's PATH for rc/service, there could be a new "system" class added that inherits from "daemon" configured with the traditional PATH that they override with (i.e. without /usr/local paths).  That would require no other changes to rc/service after modifying them to not always override PATH.  And leave only the cron issue.