From unknown Sat Jun 06 14:16:43 2026 X-Loop: owner@bugs.x2go.org Subject: Bug#438: x2goserver and rhel6.4 / selinux Problem Reply-To: Mike Gabriel , 438@bugs.x2go.org Resent-From: Mike Gabriel Resent-To: x2go-dev@lists.berlios.de Resent-CC: X2Go Developers X-Loop: owner@bugs.x2go.org Resent-Date: Fri, 28 Feb 2014 12:05:02 +0000 Resent-Message-ID: Resent-Sender: owner@bugs.x2go.org X-X2Go-PR-Message: followup 438 X-X2Go-PR-Package: x2goserver X-X2Go-PR-Keywords: moreinfo Received: via spool by 438-submit@bugs.x2go.org id=B438.139358884014366 (code B ref 438); Fri, 28 Feb 2014 12:05:02 +0000 Received: (at 438) by bugs.x2go.org; 28 Feb 2014 12:00:40 +0000 X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on ymir.das-netzwerkteam.de X-Spam-Level: X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,URIBL_BLOCKED autolearn=ham version=3.3.2 Received: from freya.das-netzwerkteam.de (freya.das-netzwerkteam.de [88.198.48.199]) by ymir (Postfix) with ESMTPS id 4CE8C5DB16 for <438@bugs.x2go.org>; Fri, 28 Feb 2014 13:00:39 +0100 (CET) Received: from grimnir.das-netzwerkteam.de (grimnir.das-netzwerkteam.de [78.46.204.98]) by freya.das-netzwerkteam.de (Postfix) with ESMTPS id ECCC71EC67; Fri, 28 Feb 2014 13:00:38 +0100 (CET) Received: from localhost (localhost [127.0.0.1]) by grimnir.das-netzwerkteam.de (Postfix) with ESMTP id DDBEC3BD70; Fri, 28 Feb 2014 13:00:38 +0100 (CET) X-Virus-Scanned: Debian amavisd-new at grimnir.das-netzwerkteam.de Received: from grimnir.das-netzwerkteam.de ([127.0.0.1]) by localhost (grimnir.das-netzwerkteam.de [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5kAuCJdLvvXo; Fri, 28 Feb 2014 13:00:38 +0100 (CET) Received: from grimnir.das-netzwerkteam.de (localhost [127.0.0.1]) by grimnir.das-netzwerkteam.de (Postfix) with ESMTPSA id A1FCC3B93D; Fri, 28 Feb 2014 13:00:38 +0100 (CET) Received: from m-047.informatik.uni-kiel.de (m-047.informatik.uni-kiel.de [134.245.254.47]) by mail.das-netzwerkteam.de (Horde Framework) with HTTP; Fri, 28 Feb 2014 12:00:38 +0000 Date: Fri, 28 Feb 2014 12:00:38 +0000 Message-ID: <20140228120038.Horde.dl33bCBmwwHgj0u6OwNIwA1@mail.das-netzwerkteam.de> From: Mike Gabriel To: Frank Knoben Cc: 438@bugs.x2go.org References: <20140227153048.Horde.6X5oZyCn2oTDQtFl7KQMCQ1@mail.das-netzwerkteam.de> <53104757.1030306@igpm.rwth-aachen.de> <20140228092446.Horde.K_uiZqFdCvK-Jq-K84gzwg6@mail.das-netzwerkteam.de> <53106F2B.4000507@igpm.rwth-aachen.de> In-Reply-To: <53106F2B.4000507@igpm.rwth-aachen.de> User-Agent: Internet Messaging Program (IMP) H5 (6.1.4) Accept-Language: en,de Organization: DAS-NETZWERKTEAM X-Originating-IP: 134.245.254.47 X-Remote-Browser: Mozilla/5.0 (X11; Linux x86_64; rv:26.0) Gecko/20100101 Firefox/26.0 Iceweasel/26.0 Content-Type: multipart/signed; boundary="=_olvj9Sedtq8GZld9eearxw2"; protocol="application/pgp-signature"; micalg=pgp-sha1 MIME-Version: 1.0 This message is in MIME format and has been PGP signed. --=_olvj9Sedtq8GZld9eearxw2 Content-Type: text/plain; charset=utf-8; format=flowed; DelSp=Yes Content-Disposition: inline Hi Frank, On Fr 28 Feb 2014 12:12:43 CET, Frank Knoben wrote: > Hi Mike, > > thank you very much for the proposal, where I could fix the problem > for my system. > But I still have to think, how to make a permanent workaround in the > x2gostartagent script. > > - if I use icewm windowmanager with selinux and x2goserver / > x2goclient everything is fine and the .Xauthority file has the right > permissions > - if I use the kde or gnome windowmanager the .Xauthority > permissions will be modified to the wrong permissions > - when the home directory is on a nfsserver with no selinux > installed and the x2goserver system uses selinux, there is no > problem at all. > Trying to fix the selinux permissions will give the error message > 'Operation not supported' > > So I think, it is a problem of the kde and gnome windowmanager. > For the kde windowmanager, I put a chcon statement at the end of the > /usr/bin/startkde script. > I'm still looking for a workaround for the gnome windowmanager. > > Sincerly > > Frank > Thanks for this heavy debugging. I will be fine with adding such magic into x2gostartagent (or x2goruncommand). But we need to be as detailled and explicit on the how and when. Get back to me, once you have more insights. Mike -- DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby fon: +49 (1520) 1976 148 GnuPG Key ID 0x25771B31 mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de freeBusy: https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xfb --=_olvj9Sedtq8GZld9eearxw2 Content-Type: application/pgp-signature Content-Description: Digitale PGP-Signatur Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.15 (GNU/Linux) iQIcBAABAgAGBQJTEHpmAAoJEJr0azAldxsxZCAP/3u05/JxWrOvx1X1PUIM5uW5 qfyQf0YxsGbFg3a7iwlay3bdbYvc33JpohgEpxwVk+5pAera4yWRcpcEk1tMw7ks SWkluDbW3Lg6+qrSGVxbXmW8ZLA+aBurBTEec+GS7RVBoM4gLo8pxszj8pwARDxv /g679oh2Xe011dcF6eHtCa1irE6BoqmOIAAj94jzys8peWVNizjX2v2BTjI5vkZc 9Suz/h/QbaeRXiqg2zyZ93JlU5XoKGor6qOW/bVLngIreNwoSDjgLoKi6vSBMywj /zFo3092RV0iwwtGvI4WPuH4FnIHdafxms5IJRvQ+0LrrOP/Tx+JE/3+PEQ0nPSh StlrNWWR3esayVmRA0cCQWERQxNV4nDReMgtUuKAfGeyoOJ2N6SVIxZU6POsFfBg s0HkCczOmgnD+R6FxQ05udn+Trij4GNl0l1V0KL0O/HUxS93Wc6zd1Z3CebYSFRD 040mGxhf368kNqYNFzohh6o10xB4T/y/818Dokgi66fdyd10H8ekdR4n0EW16skC drATyMLscTfJ1049bDldwoF/93CLWS8JNRUw8Bw8nxfht///W8x8L1ruG0KgFy3D z3xPbiEpea64tks90Co9y45UaAR56z0yB0IIUSOJxUM+K+7zacbQWX3C6yGVfYYm o1ablo9nQIDgfccgAam3 =9bq+ -----END PGP SIGNATURE----- --=_olvj9Sedtq8GZld9eearxw2--