From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: (qmail 25877 invoked by alias); 8 Jun 2015 07:49:02 -0000 Mailing-List: contact zsh-workers-help@zsh.org; run by ezmlm Precedence: bulk X-No-Archive: yes List-Id: Zsh Workers List List-Post: List-Help: X-Seq: 35415 Received: (qmail 21775 invoked from network); 8 Jun 2015 07:48:58 -0000 X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on f.primenet.com.au X-Spam-Level: X-Spam-Status: No, score=-2.6 required=5.0 tests=BAYES_00,RCVD_IN_DNSWL_LOW, RCVD_IN_MSPIKE_H3,RCVD_IN_MSPIKE_WL autolearn=ham autolearn_force=no version=3.4.0 X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20130820; h=x-gm-message-state:from:message-id:date:in-reply-to:comments :references:to:subject:cc:mime-version:content-type; bh=cmg6uWGnr+cL/+RdSiymCmXe9DArP/8EpzQEr5dVgpE=; b=nKHNuHpbVCD0YNRlvGMP8RfbzpG4T7lgB2pTypo+YPA1Iyvzghd9spxIg/ZauhiQDD gbnbAEX0GdaeP+d47PVHgw60OU1RqZ+T+rFu4tu7PgWigm2AbCEP/Rl5saN9YETB0uXe p0nqTpVyK2EPhi1val+fGCgCjl9vliCOd0rHrpzTaIR22fWuMfFvwzH57oUh9R9t118O 8gH8yrMNycLOT4X0LBxTW/qZGM/gBolZmktu6p5je9cIt7DvUi/yH3I1fQZa+UKlJ4pR ATZca0OBdXsqGEwIjVAgxCzCDWYc9LrqVlrpgfTI9RXMouKy1CTG8nBitbQzjJV/goNv SJSA== X-Gm-Message-State: ALoCoQlzF28yrHP0UyMDABcL9vTdDTukmzWwMZdUwUZadeaW1hMGvn0oQZNFTBiIdy6k41Nicl+F X-Received: by 10.182.86.9 with SMTP id l9mr13326672obz.61.1433749732217; Mon, 08 Jun 2015 00:48:52 -0700 (PDT) From: Bart Schaefer Message-Id: <150608004847.ZM27819@torch.brasslantern.com> Date: Mon, 8 Jun 2015 00:48:47 -0700 In-Reply-To: Comments: In reply to Stephen Romansky "compinit insecure warning with trusted user" (Jun 7, 1:09pm) References: X-Mailer: OpenZMail Classic (0.9.2 24April2005) To: zsh-workers@zsh.org Subject: Re: compinit insecure warning with trusted user Cc: Stephen Romansky MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii On Jun 7, 1:09pm, Stephen Romansky wrote: } } Zsh in owned by an admin account that isn't named root, and is not the } current user. } } Now, } http://zsh.sourceforge.net/Doc/Release/Completion-System.html#Use-of-compinit } states that the *compaudit* will throw the warning if the completion system } is not owned by root or the current user. Which is the case I have. That paragraph is missing one detail, which is that compaudit also tries to identify the user that owns the zsh binary itself, and allows fpath directories to be owned by that user as well as root or the current user. Do you in fact have a case where the files in fpath are not owned by the same user as the zsh binary? If the binary and the function library ARE owned by the same user, perhaps there is an ownership test you can help us improve. Currently it examines /proc/$$/exe /proc/$$/object/a.out There's also some special code for debian. If your situation is common on some particular distribution, perhaps we need to special-case that, too. } So, can the admin and/or wheel group be added to this set of } exceptions? Or, is it simpler to just add the ignore flag to } *compinit* on the system in question? You probably want "compinit -u" (the "use the library anyway" flag) rather than the ignore flag.