System wide variables across all users and all shells. How?

Alexandr Kirilov · 2024-10-20T16:39:58+0100

Hello all!

What is the best way to define system wide variable that will be available for all users under any of shells?

Means seeking solutions that not require me to define something for each of user separately in ~/.profile or ~/.login.conf or any other files. Means seeking solution to define it at one place for every user under any of shells.

T-Aoki · 2024-10-20T17:07:44+0100

I've once tried defining environment variables for all user on/etc/rc.conf[.local], without luck.
Not tried, but

creating something like /etc/login.local (for /bin/[t]csh as shell)
for variables for base components and site-local ones,
/usr/local/etc/login.local for anything others (needed only for ports components and host-local ones)
/usr/local/etc/login.conf is included from /etc/login.local if exists (conditionally).
/etc/login.local alone is included from ~/.login of all users.

could work.

Note that how to define environment variables depends on the shell used, so these configuration files shoule be prepared for all type of shells (/bin/sh, /bin/csh, /usr/local/bin/zsh, and so on) used in the host separately.

Kai Burghardt · 2024-10-20T17:08:31+0100

Alexandr Kirilov said:
[…] What is the best way to define system wide variable that will be available for all users under any of shells?

Do you mean you declare one variable and if one user changes the variable’s value, all other logged‑in users see that changed variable’s value, too? This is not possible. Well, at least not without effort.

If you mean, you set the initial environ(7)ment variable’s value but otherwise each user maintains their own independent copy: There’s /etc/login.conf(5), there’s /etc/profile (sh(1) and many shells(5) consult this file), there’s pam_putenv(3) (should you program a PAM module) … familiarize with each of them to assess what’s the best for your situation.

eseipi · 2024-10-20T17:22:51+0100

Yep, setenv from login.conf(5) is probably the first option to look at in the described scenario if we are talking about any shell.

T-Aoki · 2024-10-20T17:31:04+0100

eseipi said:
Yep, setenv from login.conf(5) is probably the first option to look at in the described scenario if we are talking about any shell.

It would be. But I'm not 100% sure if it always promised to work for shell scripts invoked by nologin users (usually for daemons) and every shells in the wild (including ones which does not in ports collection).

cracauer@ · 2024-10-20T17:36:39+0100

T-Aoki said:
It would be. But I'm not 100% sure if it always promised to work for shell scripts invoked by nologin users (usually for daemons) and every shells in the wild (including ones which does not in ports collection).

I think that if you come in via a ssh command (not a login) there are shells that don't load any dotfiles. I also think FreeBSD's /bin/sh is one.

eseipi · 2024-10-20T18:07:07+0100

T-Aoki said:
It would be. But I'm not 100% sure if it always promised to work for shell scripts invoked by nologin users (usually for daemons) and every shells in the wild (including ones which does not in ports collection).

You're right about the scripts, I just thought OP was asking about interactive shells.

And yes, sh(1) doesn't source any files by default unless invoked as a login shell, but it can (again, if run interactively) if the ENV variable is set.

Phishfry · 2024-10-20T18:15:15+0100

What about a kenv setting instead of env ?
Would that fit the ticket?
That should be across all login tpyes.

cracauer@ · 2024-10-20T18:33:28+0100

Just hack up everything in /etc/shells. That should do it.