| delorie.com/archives/browse.cgi | search |
| X-Recipient: | archive-cygwin AT delorie DOT com |
| X-SWARE-Spam-Status: | No, hits=4.2 required=5.0 tests=AWL,BAYES_50,BOTNET,RCVD_IN_DNSWL_NONE |
| X-Spam-Check-By: | sourceware.org |
| Message-id: | <4BEC2C8A.4060402@cygwin.com> |
| Date: | Thu, 13 May 2010 12:44:58 -0400 |
| From: | "Larry Hall (Cygwin)" <reply-to-list-only-lh AT cygwin DOT com> |
| Reply-to: | cygwin AT cygwin DOT com |
| User-Agent: | Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8.1.21) Gecko/20090320 Remi/2.0.0.21-1.fc8.remi Lightning/0.9 Thunderbird/2.0.0.21 Mnenhy/0.7.5.0 |
| MIME-version: | 1.0 |
| To: | cygwin AT cygwin DOT com |
| Subject: | Re: Problems with environment variables in Windows 7 |
| References: | <AANLkTimSPoSAbZ3mPAU-bjEv5N-vqmsaKoN_slnYI60M AT mail DOT gmail DOT com> <AANLkTilRpeRX5JJHDuQu2rb7RS3S3-s80r94wtTqKOuQ AT mail DOT gmail DOT com> <4BEC1BFE DOT 3070300 AT cygwin DOT com> <AANLkTiklBvHT_RgISgqek1zbZwsKu5qjL7Gj_3L5D9Pa AT mail DOT gmail DOT com> |
| In-reply-to: | <AANLkTiklBvHT_RgISgqek1zbZwsKu5qjL7Gj_3L5D9Pa@mail.gmail.com> |
| Mailing-List: | contact cygwin-help AT cygwin DOT com; run by ezmlm |
| List-Id: | <cygwin.cygwin.com> |
| List-Subscribe: | <mailto:cygwin-subscribe AT cygwin DOT com> |
| List-Archive: | <http://sourceware.org/ml/cygwin/> |
| List-Post: | <mailto:cygwin AT cygwin DOT com> |
| List-Help: | <mailto:cygwin-help AT cygwin DOT com>, <http://sourceware.org/ml/#faqs> |
| Sender: | cygwin-owner AT cygwin DOT com |
| Mail-Followup-To: | cygwin AT cygwin DOT com |
| Delivered-To: | mailing list cygwin AT cygwin DOT com |
<http://cygwin.com/acronyms/#TOFU>. Reformatted.
On 5/13/2010 12:10 PM, yoni shalom wrote:
> On Thu, May 13, 2010 at 6:34 PM, Larry Hall (Cygwin)
> <raw email address> wrote:
^^^^^^^^^^^^^^^^^
<http://cygwin.com/acronyms/#PCYMTNQREAIYR> Don't feed the spammers.
>> On 5/13/2010 8:36 AM, yoni shalom wrote:
>>>
>>> I don't get the user's environment variables while in ssh session.
>>> Example :
>>>
>>> //open up cygwin console
>>> yoni AT yonidesk ~
>>> $ env | grep -i ProgramFiles
>>> COMMONPROGRAMFILES=C:\Program Files\Common Files
>>> PROGRAMFILES=C:\Program Files
>>> yoni AT yonidesk ~
>>> $ ssh yoni AT localhost
>>> Last login: Thu May 13 13:45:01 2010 from ::1
>>> yoni AT yonidesk ~
>>> $ env | grep -i ProgramFiles
>>> [nothing]
>>>
>>> Fresh install of latest cygwin, everything else otherwise seems to work.
>>> Any clues ? Thanks.
>>
>> The email archives is your friend:
>>
>> <http://sourceware.org/ml/cygwin/2010-05/msg00001.html>
> I did some googling around for this to no avail. Sorry 'bout that.
> From the conversation you referred me to : " ... 'ssh' is a secure
> shell so it has a minimal environment...."
>
> a. Did this change in one of the newer versions ? We have a few
> machines here configured the same way and we never got this problem
> before.
It was a change from Cygwin 1.5, yes.
> b. What's the reason for "downsizing" the environment variable set ?
> If I'm already securely authenticated as X why shouldn't I see
> everything X would if he had opened a terminal locally ?
It's fine if you were comfortable with more of your environment seeping
through the 'ssh' connection. But your comfort is not really the issue.
Exposing specifics about your environment opens any connection up to
exploitation. This is true for 'ssh' in any environment. Check the
email archives for a discussion of this change if you're interested in
more details.
--
Larry Hall http://www.rfk.com
RFK Partners, Inc. (508) 893-9779 - RFK Office
216 Dalton Rd. (508) 893-9889 - FAX
Holliston, MA 01746
_____________________________________________________________________
A: Yes.
> Q: Are you sure?
>> A: Because it reverses the logical flow of conversation.
>>> Q: Why is top posting annoying in email?
--
Problem reports: http://cygwin.com/problems.html
FAQ: http://cygwin.com/faq/
Documentation: http://cygwin.com/docs.html
Unsubscribe info: http://cygwin.com/ml/#unsubscribe-simple
| webmaster | delorie software privacy |
| Copyright © 2019 by DJ Delorie | Updated Jul 2019 |