X2Go Bug report logs - #438
x2goserver and rhel6.4 / selinux Problem

version graph

Package: x2goserver; Maintainer for x2goserver is X2Go Developers <x2go-dev@lists.x2go.org>; Source for x2goserver is src:x2goserver.

Reported by: Frank Knoben <admin@igpm.rwth-aachen.de>

Date: Thu, 27 Feb 2014 09:10:02 UTC

Severity: normal

Tags: moreinfo, not-a-bug

Found in version

Done: Mike Gabriel <mike.gabriel@das-netzwerkteam.de>

Bug is archived. No further changes may be made.

Full log

🔗 View this message in rfc822 format

X-Loop: owner@bugs.x2go.org
Subject: Bug#438: [X2Go-Dev] Bug#438: x2goserver and rhel6.4 / selinux Problem
Reply-To: Orion Poplawski <orion@cora.nwra.com>, 438@bugs.x2go.org
Resent-From: Orion Poplawski <orion@cora.nwra.com>
Resent-To: x2go-dev@lists.berlios.de
Resent-CC: X2Go Developers <x2go-dev@lists.berlios.de>
X-Loop: owner@bugs.x2go.org
Resent-Date: Tue, 04 Mar 2014 16:40:02 +0000
Resent-Message-ID: <handler.438.B438.139395097522219@bugs.x2go.org>
Resent-Sender: owner@bugs.x2go.org
X-X2Go-PR-Message: followup 438
X-X2Go-PR-Package: x2goserver
X-X2Go-PR-Keywords: moreinfo
Received: via spool by 438-submit@bugs.x2go.org id=B438.139395097522219
          (code B ref 438); Tue, 04 Mar 2014 16:40:02 +0000
Received: (at 438) by bugs.x2go.org; 4 Mar 2014 16:36:15 +0000
X-Spam-Checker-Version: SpamAssassin 3.3.2 (2011-06-06) on
X-Spam-Status: No, score=-1.9 required=5.0 tests=BAYES_00,T_DKIM_INVALID,
	URIBL_BLOCKED autolearn=ham version=3.3.2
Received: from mail.cora.nwra.com (mercury.cora.nwra.com [])
	by ymir (Postfix) with ESMTPS id A7ABA5DB13
	for <438@bugs.x2go.org>; Tue,  4 Mar 2014 17:36:13 +0100 (CET)
Received: from [] (barry.cora.nwra.com [])
	(authenticated bits=0)
	by mail.cora.nwra.com (8.14.4/8.14.4) with ESMTP id s24GaAlr004378
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES128-SHA bits=128 verify=NO);
	Tue, 4 Mar 2014 09:36:10 -0700
DKIM-Signature: v=1; a=rsa-sha256; c=simple/simple; d=cora.nwra.com;
	s=default; t=1393950971;
Message-ID: <531600FA.2010902@cora.nwra.com>
Date: Tue, 04 Mar 2014 09:36:10 -0700
From: Orion Poplawski <orion@cora.nwra.com>
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.3.0
MIME-Version: 1.0
To: Frank Knoben <admin@igpm.rwth-aachen.de>, 438@bugs.x2go.org,
        Mike Gabriel <mike.gabriel@das-netzwerkteam.de>
References: <20140227153048.Horde.6X5oZyCn2oTDQtFl7KQMCQ1@mail.das-netzwerkteam.de>	<53104757.1030306@igpm.rwth-aachen.de>	<20140228092446.Horde.K_uiZqFdCvK-Jq-K84gzwg6@mail.das-netzwerkteam.de>	<53106F2B.4000507@igpm.rwth-aachen.de>	<20140228120038.Horde.dl33bCBmwwHgj0u6OwNIwA1@mail.das-netzwerkteam.de> <53107DED.6080206@igpm.rwth-aachen.de> <53111696.8050600@cora.nwra.com> <5315B2CE.6000500@igpm.rwth-aachen.de>
In-Reply-To: <5315B2CE.6000500@igpm.rwth-aachen.de>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
On 03/04/2014 04:02 AM, Frank Knoben wrote:
> When I put the lines in the x2gostartagent script
> after the
> line, the permissions will be fixed on login and not on logout.
> Unfortunately, restorcon sets the permissions to system_u:object_r:default_t:s0
> and this does not work on my system.

That's not right.  What is your home directory?  What does matchpathcon $HOME 

> Instead of fixing the selinux .Xauthority permissions, the file could also be
> deleted on login,
> if it existed. Something like:
> if test -f $HOME/.Xauthority
> then
>    rm $HOME/.Xauthority
> fi
> But it could also be, that my selinux system is misconfigured in some strange
> way,
> so that other people, who run the system, don't have this problem.
> Frank
> On 03/01/2014 12:07 AM, Orion Poplawski wrote:
>> On 02/28/2014 05:15 AM, Frank Knoben wrote:
>>> Hi Mike,
>>> what about the following solution / proposal for the x2goruncommand script:
>>> ....
>>> # run logout scripts
>>> FIX_XAUTH=`ls -Z $HOME/.Xauthority | egrep default_t`
>>> if test -n $FIX_AUTH
>>> then
>>>    /usr/bin/chcon unconfined_u:object_r:xauth_home_t:s0 $HOME/.Xauthority
>>> fi
>> I would suggest using restorecon to set the label.

Orion Poplawski
Technical Manager                     303-415-9701 x222
NWRA, Boulder/CoRA Office             FAX: 303-415-9702
3380 Mitchell Lane                       orion@nwra.com
Boulder, CO 80301                   http://www.nwra.com

Send a report that this bug log contains spam.

X2Go Developers <owner@bugs.x2go.org>. Last modified: Thu Feb 29 03:09:02 2024; Machine Name: ymir.das-netzwerkteam.de

X2Go Bug tracking system

Debbugs is free software and licensed under the terms of the GNU Public License version 2. The current version can be obtained from https://bugs.debian.org/debbugs-source/.

Copyright © 1999 Darren O. Benham, 1997,2003 nCipher Corporation Ltd, 1994-97 Ian Jackson, 2005-2017 Don Armstrong, and many other contributors.