Re: admin user (and ditto group member) no longer has the corresponding permissions?!
Re: admin user (and ditto group member) no longer has the corresponding permissions?!
- Subject: Re: admin user (and ditto group member) no longer has the corresponding permissions?!
- From: "Sankey, David \(STFC, RAL, PPD\) via X11-users" <email@hidden>
- Date: Tue, 28 Jul 2020 12:56:59 +0000
- Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=stfc.ac.uk; dmarc=pass action=none header.from=stfc.ac.uk; dkim=pass header.d=stfc.ac.uk; arc=none
- Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=U7IldUCza/NY2+GO76xg9LoszGD8dHc+KcFS9P1xgVI=; b=Et7LoM0Y6NLSlaqfMET+fCYE8Llt7lmrqbFz0SScFeKXP4UDXZoaiEx39gDJxYVY5SXaEhR4ZNPoTVzodX9w7uoQy+X8YzHJa/JuO8E7N+2d0WVf1O/8vIz7+rEFSZtwb87UkiazlVkpYelH/nFDWv8OroZ8oJzzUW0/VtUnsCgPH+MD4CSZHxYVAmxNwdKC8UZPvW91Wsbb7Uc0V4ce8deMdI16WDMVZyXd31XtjZ43OVndvQLGeq90Qy7pq4K2SDUEEzfzOlSS55AOWbyD4Ao8ILdSVipQ/ZpSZ415zopxn08aK+lJo0BAi4swENB98yL1dHrZG9I6UJTyy3mY6Q==
- Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=AJ2Wy3S3PqX9mV8f4JndYXWNHUc439z1NSBuTxdO/AsulU5vD1TuwcBTr/zcZ4UiIvfhApsYgDAXyeG59agZ57My2saVneIOLqgOnwozhRSpQ11cuVjFE1W2yKdR1v31HVZiBEowgz/3bziWjf2QxAjUpYBIQ0jFsZKBmbyt9yStMQq4JgT/xiX4UmE7srfym9L117gFm4PDRKnazINwjq6A39zZw/MJKWBh4ebXBMz5UpsWRYZ6sV1NG1tZJppwPQz0pXMXxF+lzmOEbXOA2kaXSAqMdXErI2frihAQzip90oRirtf+AJVIdhRrr+m0keWHn9oHBkfID70MP5uE/Q==
- Thread-topic: admin user (and ditto group member) no longer has the corresponding permissions?!
Sorry, red herring then, I thought that this was the gotcha with Catalina.
D
> On 28 Jul 2020, at 13:31, René J.V. Bertin <email@hidden> wrote:
>
>> Sorry, what OS are you running?
>
> 10.9.5, sorry, I thought I had mentioned that.
>
> ```
> %> cat /Applications/Utilities/XQuartz.app/Contents/MacOS/X11
> #!/bin/bash
>
> set "$(dirname "$0")"/X11.bin "${@}"
>
> if [ -x ~/.x11run ]; then
> exec ~/.x11run "${@}"
> fi
>
> case $(basename "${SHELL}") in
> bash) exec -l "${SHELL}" --login -c 'exec "${@}"' - "${@}" ;;
> ksh|sh|zsh) exec -l "${SHELL}" -c 'exec "${@}"' - "${@}" ;;
> csh|tcsh) exec -l "${SHELL}" -c 'exec $argv:q' "${@}" ;;
> es|rc) exec -l "${SHELL}" -l -c 'exec $*' "${@}" ;;
> *) exec "${@}" ;;
> esac
> ```
>
> The script is indeed executed by bash, which then overlays itself by the
> user's shell. Isn't /bin/sh a symlink or hardlink to /bin/bash on later OS
> versions, and wouldn't any restrictions applied to bash apply to almost
> anything (because afaik /bin/sh can hardly be avoided when spawning
> executables)?
>
> Until now I've been testing with a temp. dir under /tmp, is that location
> off-limits too under SIP (IOW, should I test again in $HOME or my personal
> $TMPDIR)?!
>
> R.
This email and any attachments are intended solely for the use of the named
recipients. If you are not the intended recipient you must not use, disclose,
copy or distribute this email or any of its attachments and should notify the
sender immediately and delete this email from your system. UK Research and
Innovation (UKRI) has taken every reasonable precaution to minimise risk of
this email or any attachments containing viruses or malware but the recipient
should carry out its own virus and malware checks before opening the
attachments. UKRI does not accept any liability for any losses or damages which
the recipient may sustain due to presence of any viruses. Opinions, conclusions
or other information in this message and attachments that are not related
directly to UKRI business are solely those of the author and do not represent
the views of UKRI.
_______________________________________________
Do not post admin requests to the list. They will be ignored.
X11-users mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden