From owner-freebsd-current@FreeBSD.ORG Fri Sep 12 21:53:36 2014 Return-Path: Delivered-To: freebsd-current@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:1900:2254:206a::19:1]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 82476292; Fri, 12 Sep 2014 21:53:36 +0000 (UTC) Received: from dmz-mailsec-scanner-3.mit.edu (dmz-mailsec-scanner-3.mit.edu [18.9.25.14]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (Client did not present a certificate) by mx1.freebsd.org (Postfix) with ESMTPS id 09C84EAF; Fri, 12 Sep 2014 21:53:35 +0000 (UTC) X-AuditID: 1209190e-f79d46d000003643-bd-54136b576648 Received: from mailhub-auth-4.mit.edu ( [18.7.62.39]) (using TLS with cipher AES256-SHA (256/256 bits)) (Client did not present a certificate) by dmz-mailsec-scanner-3.mit.edu (Symantec Messaging Gateway) with SMTP id EB.4B.13891.75B63145; Fri, 12 Sep 2014 17:53:28 -0400 (EDT) Received: from outgoing.mit.edu (outgoing-auth-1.mit.edu [18.9.28.11]) by mailhub-auth-4.mit.edu (8.13.8/8.9.2) with ESMTP id s8CLrRi9008496; Fri, 12 Sep 2014 17:53:27 -0400 Received: from multics.mit.edu (system-low-sipb.mit.edu [18.187.2.37]) (authenticated bits=56) (User authenticated as kaduk@ATHENA.MIT.EDU) by outgoing.mit.edu (8.13.8/8.12.4) with ESMTP id s8CLrOdT026272 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NOT); Fri, 12 Sep 2014 17:53:26 -0400 Received: (from kaduk@localhost) by multics.mit.edu (8.12.9.20060308) id s8CLrOls017928; Fri, 12 Sep 2014 17:53:24 -0400 (EDT) Date: Fri, 12 Sep 2014 17:53:24 -0400 (EDT) From: Benjamin Kaduk To: "Rang, Anton" Subject: RE: shells/bash port, add a knob which symlinks to /bin/bash ? In-Reply-To: Message-ID: References: <20140912214004.GT6096@ivaldir.etoilebsd.net> User-Agent: Alpine 1.10 (GSO 962 2008-03-14) MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII X-Brightmail-Tracker: H4sIAAAAAAAAA+NgFmplleLIzCtJLcpLzFFi42IRYrdT143IFg4x+PWNyeLQi+NMFnPefGCy 2HT4LaMDs8eMT/NZPL5/2MwWwBTFZZOSmpNZllqkb5fAlfFodlHBWbaKPTveMTYwrmLtYuTk kBAwkWj++ZMRwhaTuHBvPVsXIxeHkMBsJomOnzdYIJyNjBJ9z0A6QJxDTBKTtzRBZRoYJdZf vMUO0s8ioC0x8/tBFhCbTUBFYuabjWwgtoiApsSFBx/A4swCqRKv7q0Bs4UF3CVmPb4DtptT wE/i565NzCA2r4CjRPv8ZnaIBQcYJbbvWwR2rKiAjsTq/VNYIIoEJU7OfAI1VEti+fRtLBMY BWchSc1CklrAyLSKUTYlt0o3NzEzpzg1Wbc4OTEvL7VI11gvN7NELzWldBMjKGw5Jfl2MH49 qHSIUYCDUYmHd6aucIgQa2JZcWXuIUZJDiYlUV71dKAQX1J+SmVGYnFGfFFpTmrxIUYJDmYl Ed6oIKAcb0piZVVqUT5MSpqDRUmcd9MPvhAhgfTEktTs1NSC1CKYrAwHh5IEr2QWUKNgUWp6 akVaZk4JQpqJgxNkOA/Q8MJMkOHFBYm5xZnpEPlTjMYcLU1ve5k41nV+62cSYsnLz0uVEudt ASkVACnNKM2DmwZLPa8YxYGeE+Y1BVnKA0xbcPNeAa1iAlr1bo4QyKqSRISUVAOj9rbOY0Ed In5blRMFF52YdLk1ep/BBva5257z9jLrT9Lr+vXZIcdArpnVqVp/+T2OBT5e/rU5h29FrhR/ rG/+Zurs3Qr3/S+EGjB6PeCQduuS6+dvOJKxJCX1xZL3LPKR0n82Xj/Sc2jz00tc15Zus7KX yHwjZjyR78SbL7fk9u+P+ywY84VZiaU4I9FQi7moOBEABLB2aBgDAAA= Cc: freebsd-current Current , ports X-BeenThere: freebsd-current@freebsd.org X-Mailman-Version: 2.1.18-1 Precedence: list List-Id: Discussions about the use of FreeBSD-current List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 Sep 2014 21:53:36 -0000 On Fri, 12 Sep 2014, Rang, Anton wrote: > > If you want interoperability just use /usr/bin/env bash as a shebang. > > That doesn't work for this use case -- the user shell coming from LDAP > -- but I agree that the port shouldn't be modifying /usr/bin. Here at MIT, where our Athena environment has a long history of providing a consistent experience across many different platforms, we ended up limiting the login shells a user could select, to a whitelist we provide (/bin/sh, /usr/athena/bin/bash, and /usr/athena/bin/tcsh). (The latter two are now symlinks to the normal system shells, but they used to be custom binaries.) Some people did not like being so restricted, and set their login shell to /bin/sh, with logic in their dotfiles to re-exec a different shell depending on the current runtime environment. -Ben