LinuxQuestions.org
Visit the LQ Articles and Editorials section
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 02-26-2006, 04:39 PM   #1
Ystack
LQ Newbie
 
Registered: Dec 2005
Posts: 20

Rep: Reputation: 0
catch-22: lpd v (pam & gdm)


Well, I could google on until the cows come home ....

But maybe someone could tell me what ownership + permissions on a RH8 /var will keep both lpd and (pam + gdm) happy!

Unless /var is root:root 755 it seems pam objects "owner != 0" or "permissions lax". And gdm throws a fit in that case.

When /var is root:root 755, the checkpc script in lpd invocation throws a fit AND (WORSE!) causes /var to be changed to lp:lp. And worse still, if lpd is auto-invoked during boot ( then gdm is in real trouble!)

The error mis-messages in both cases complain of non-existence nonsense, when of course it must be just one of those messy owner /permissions problems (I think). And just copying my FC4 settings doesn't seem to solve the RH8 bind?

help?

cheers. Ystack
 
Old 02-28-2006, 09:10 AM   #2
unSpawn
Moderator
 
Registered: May 2001
Posts: 26,987
Blog Entries: 54

Rep: Reputation: 2742Reputation: 2742Reputation: 2742Reputation: 2742Reputation: 2742Reputation: 2742Reputation: 2742Reputation: 2742Reputation: 2742Reputation: 2742Reputation: 2742
AFAIK lpd should not be checking /var but only some part of the subtree, maybe something like /var/lpd or whatever it should be confined to.
 
Old 03-01-2006, 06:51 PM   #3
Ystack
LQ Newbie
 
Registered: Dec 2005
Posts: 20

Original Poster
Rep: Reputation: 0
agreed

Quote:
Originally Posted by unSpawn
AFAIK lpd should not be checking /var but only some part of the subtree, maybe something like /var/lpd or whatever it should be confined to.
Yes, I agree. Even though lpd did at least report it's gung-ho behaviour, it flashed past far too fast on the boot screen to get on to.
1. It should NEVER behave like that in a boot context (I hold) where print-priority is clearly secondary to login-priority and 2. If it does, then a sizeable delay should follow. (May be corrected in later versions?).

Luckily I could resort eventually to kdm which seems less sensitive to /var permissions. Although I think I eventually found out(not easily) what the REQUIRED PERMISSIONS are for both lpd and gdm, I still call it poor software that has precise settings requirements and doesn't reveal PRECISELY WHAT THEY ARE when obviously croaking on the fact of their absence!

Ystack
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
KDM && GDM Simple Question shaggz Linux - General 3 02-14-2004 05:37 AM
PAM authentication & NT domain rangel Linux - Security 2 11-27-2003 07:52 AM
Need help w/Samba & PAM Auth DocJones Linux - Software 3 05-14-2003 08:42 AM
ACPI & XFree catch 22 acjt Linux - Hardware 4 04-26-2003 06:35 AM
NIS and pam/gdm authentication failure cquense Linux - Networking 0 07-05-2001 03:08 AM


All times are GMT -5. The time now is 08:48 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration