Bug Fix Advisory setup bug fix and enhancement update

Advisory: RHBA-2008:0130-9
Type: Bug Fix Advisory
Severity: N/A
Issued on: 2008-07-24
Last updated on: 2008-07-24
Affected Products: Red Hat Desktop (v. 4)
Red Hat Enterprise Linux AS (v. 4)
Red Hat Enterprise Linux ES (v. 4)
Red Hat Enterprise Linux WS (v. 4)
OVAL: N/A

Details

An updated setup package that fixes several bugs and adds an enhancement is
now available.

The setup package contains a set of important system configuration and
setup files, such as passwd, group, and profile.

This updated package fixes the following bugs:

* when tcsh was the default shell, the behavior differed from that of the
bash shell, with regards to login and interactive shells. The
"/etc/profile.d/*.csh" scripts were sourced from "/etc/csh.cshrc", which
caused all "/etc/profile.d/*.csh" scripts to be executed for all tcsh
shells, instead of only interactive shells. In this updated package, the
"/etc/profile.d/*.csh" scripts are sourced from "/etc/csh.login", and
"/etc/csh.cshrc" for interactive shells, which resolves this issue.

* when using tcsh as the default shell, the "less" command broke when a
startup script produced output. For example, if a "/etc/profile.d/*.csh"
script contained the "echo test" command, then, after start up, running the
"less /etc/hosts" command returned the "test" output, instead of the
"/etc/hosts" file. In this updated package, the "/etc/profile.d/*.csh"
scripts are sourced from "/etc/csh.login", and "/etc/csh.cshrc" for
interactive shells, which resolves this issue.

* the entry for the "news" user did not contain a login shell. This allowed
a password to be set, and would permit users to log in using this account.
In this updated package, the login shell for the "news" user is correctly
set to "/sbin/nologin". Note: this only affects new installations, or
installations where the inn package (InterNetNews) will be installed after
applying this update.

As well, this updated package adds the following enhancement:

* the documentation in the "/etc/hosts.allow" and "/etc/hosts.deny" files
was outdated, and in some cases, misleading. In this updated package, the
documentation in these files has been updated, which adds more information
and clearer instructions regarding their use.

Users of setup are advised to upgrade to this updated package, which
resolves these issues and adds this enhancement.


Solution

Before applying this update, make sure that all previously-released
errata relevant to your system have been applied.

This update is available via Red Hat Network. Details on how to use
the Red Hat Network to apply this update are available at
http://kbase.redhat.com/faq/FAQ_58_10188

Updated packages

Red Hat Desktop (v. 4)
SRPMS:
setup-2.5.37-1.7.src.rpm     0c8b6a9bc1ac64bf9b6448fa703f8199
 
IA-32:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
x86_64:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
Red Hat Enterprise Linux AS (v. 4)
SRPMS:
setup-2.5.37-1.7.src.rpm     0c8b6a9bc1ac64bf9b6448fa703f8199
 
IA-32:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
IA-64:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
PPC:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
s390:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
s390x:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
x86_64:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
Red Hat Enterprise Linux ES (v. 4)
SRPMS:
setup-2.5.37-1.7.src.rpm     0c8b6a9bc1ac64bf9b6448fa703f8199
 
IA-32:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
IA-64:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
x86_64:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
Red Hat Enterprise Linux WS (v. 4)
SRPMS:
setup-2.5.37-1.7.src.rpm     0c8b6a9bc1ac64bf9b6448fa703f8199
 
IA-32:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
IA-64:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
x86_64:
setup-2.5.37-1.7.noarch.rpm     829808413edee11dda79a684aaaa5b33
 
(The unlinked packages above are only available from the Red Hat Network)

Bugs fixed (see bugzilla for more information)

157053 - Picky: Slightly more info in /etc/hosts.allow and /etc/hosts.deny
191233 - make tcsh behave like bash
202468 - less breaks if its startup script outputs anything
229472 - news account has no login shell


Keywords

account, news, nologin

These packages are GPG signed by Red Hat for security. Our key and details on how to verify the signature are available from:
https://www.redhat.com/security/team/key/#package

The Red Hat security contact is secalert@redhat.com. More contact details at http://www.redhat.com/security/team/contact/