Differences

This shows you the differences between two versions of the page.

--- wiki:security:rbash [2014/11/01 10:00]
woglinde [Security concerns]
+++ wiki:security:rbash [2014/11/03 13:07] (current)
woglinde [rbash as default shell (optional)]
@@ Line 9: / Line 9: @@
 and hard to setup correctly. Another option is the use of rbash, but with the current state of x2go-server there
 are serval steps so setup it up working correctly.
+This guide is focused on a single application approach, no audio, remote/mounted dirs and printing are involved.
 ====== rbash short feature overview ======
@@ Line 96: / Line 98: @@
 There could be still problems to brake out of rbash, no one yet made a security audit of the linked x2go scripts, if they allow the execution of a real shell
 via options.
-====== rbash as default shell (optional)======
-If rbash is also set as the default shell via /etc/passwd or some other mechanism, the sessioncleanup skripts needs
-to be fixed too.
-In
-<code bash>
-/usr/sbin/x2gocleansessions
-</code>
-the lines with
-<code bash>
-system("su", "@sinfo[11]", "-c"
-</code>
-needs to be changed to
-<code bash>
-system("su", "@sinfo[11]", "-s", "/bin/bash", "-c",
-</code>

X2Go - everywhere@home