Comments (2)
Seems like it is actually a security bug in Ubuntu:
$ sudo python -c 'import sys; print sys.path'
['', '/home/jakub/.local/lib/python2.7/site-packages/letsencrypt-0.1-py2.7.egg', '/home/jakub/.local/lib/python2.7/site-packages/python2_pythondialog-3.0.1-py2.7.egg', '/home/jakub/.local/lib/python2.7/site-packages/pycrypto-2.6.1-py2.7-linux-x86_64.egg', '/home/jakub/.local/lib/python2.7/site-packages/M2Crypto-0.22.3-py2.7-linux-x86_64.egg', '/home/jakub/.local/lib/python2.7/site-packages/jsonschema-2.4.0-py2.7.egg', '/usr/lib/python2.7/dist-packages', '/usr/lib/python2.7', '/usr/lib/python2.7/plat-x86_64-linux-gnu', '/usr/lib/python2.7/lib-tk', '/usr/lib/python2.7/lib-old', '/usr/lib/python2.7/lib-dynload', '/home/jakub/.local/lib/python2.7/site-packages', '/usr/local/lib/python2.7/dist-packages']
$ HOME=foo sudo python -c 'import sys; print sys.path'
['', '/usr/lib/python2.7', '/usr/lib/python2.7/plat-x86_64-linux-gnu', '/usr/lib/python2.7/lib-tk', '/usr/lib/python2.7/lib-old', '/usr/lib/python2.7/lib-dynload', '/usr/local/lib/python2.7/dist-packages', '/usr/lib/python2.7/dist-packages']
$ HOME=foo sudo python -c 'import os; print os.environ["HOME"]'
foo
$ sudo grep env_reset /etc/sudoers
Defaults env_reset
while man sudo
says:
ENVIRONMENT
sudo utilizes the following environment variables. The security policy has control over the actual content of the command's environment.
...
HOME Set to the home directory of the target user if -i or -H are specified, env_reset or always_set_home are set in sudoers, or when the -s option is specified and set_home is
set in sudoers.
from certbot.
Fixed in #48.
from certbot.
Related Issues (20)
- ModuleNotFoundError: No module named 'six' HOT 8
- AssertionError: Action corresponding to argument - is None HOT 4
- ot
- Issue renewing subdomains on certbot+certbot-dns-dnsmadeeasy v2.7.0+ HOT 1
- Failed to renew certificate with error: Expecting value: line 1 column 1 (char 0) HOT 1
- Webroot path is not saved when entered interactively, only when given on command line HOT 1
- Error 400 on the web when installing
- Remove deprecated uses of `OpenSSL.crypto.X509Extension` HOT 2
- Route53 plugin failed to find private zone HOT 1
- Certificate won't renew by HTTP on a site with RewriteEngine Off
- certbot-dns-ovh fails with "Unexpected error determining zone identifier" when zone has a warning HOT 6
- Feature request: Provide a hook after renew HOT 1
- When setting up the redirect from HTTP to HTTPS in NGNIX HOT 2
- Expiration date to install Certificate in Ubuntu 16.04 HOT 1
- monero miner after installing certbot HOT 3
- `certbot reconfigure` used production API instead of staging API HOT 5
- expand tilde character in command line and config file settings
- Certbot Delete assumes enter is desired entry if used in conjunction with a pipe and grep.
- docs error duplicate word on https://certbot.eff.org/instructions?ws=other&os=pip HOT 2
- On debian 8, pip install certbot fails HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from certbot.