Subject: Re: "su" in rescue?
To: Perry E. Metzger <>
From: Bill Studenmund <>
List: tech-userlevel
Date: 06/24/2004 12:50:32
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On Thu, Jun 24, 2004 at 02:30:13PM -0400, Perry E. Metzger wrote:
> (Jun-ichiro itojun Hagino) writes:
> > 	ok, i got enough comment.  so new proposal: could you please make
> > 	/usr/bin/su a static binary?  it's a one-line Makefile change.
> The problem with that is that it will mean that /usr/bin/su can't
> handle things like dynamically linked database modules, for dealing
> with things like hesiod and such.
> I would suggest that the "right" thing is to create a statically
> linked su *in addition* to the normal /usr/bin/su, and copy that into
> /rescue. We could easily do the makefile machinery to handle that.

And if a site NEEDED su to use the dynamically linked database modules=20
(say governmental or contract security requirements), the site could just=
disable the static su.

Take care,


Content-Type: application/pgp-signature
Content-Disposition: inline

Version: GnuPG v1.2.3 (NetBSD)