[X2Go-User] [INTERNET] Folder sharing SOLVED

"BOTZ Franck (Administrateur Systèmes et Réseaux) - DDT 67/SIDSIC/Pôle Infra" franck.botz at bas-rhin.gouv.fr
Tue Nov 29 16:33:15 CET 2016 

Hi !

After a long time, sharing folder works on HP T620.

On the t620 :
   * activate SSH server :
     * /usr/bin/mclient set root/sshd/enabled 1
     * /usr/bin/mcleint set root/sshd/userAccess 1
     * /usr/bin/mclient commit
     * /usr/share/manticore/plugins/sshd/wrappers/apply.sh root/sshd

   * put a sshd_config file like (it come from an ubuntu server config, 
perhaps is it possible to optimize it) :

# What ports, IPs and protocols we listen for
Port 22
# Use these options to restrict which interfaces/protocols sshd will bind to
#ListenAddress ::
#ListenAddress 0.0.0.0
Protocol 2
# HostKeys for protocol version 2
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key
HostKey /etc/ssh/ssh_host_ecdsa_key
HostKey /etc/ssh/ssh_host_ed25519_key
#Privilege Separation is turned on for security
UsePrivilegeSeparation yes

# Lifetime and size of ephemeral version 1 server key
KeyRegenerationInterval 3600
ServerKeyBits 1024

# Logging
SyslogFacility AUTH
LogLevel INFO

# Authentication:
LoginGraceTime 120
PermitRootLogin without-password
StrictModes yes

RSAAuthentication yes
PubkeyAuthentication yes
#AuthorizedKeysFile     %h/.ssh/authorized_keys

# Don't read the user's ~/.rhosts and ~/.shosts files
IgnoreRhosts yes
# For this to work you will also need host keys in /etc/ssh_known_hosts
RhostsRSAAuthentication no
# similar for protocol version 2
HostbasedAuthentication no
# Uncomment if you don't trust ~/.ssh/known_hosts for 
RhostsRSAAuthentication
#IgnoreUserKnownHosts yes

# To enable empty passwords, change to yes (NOT RECOMMENDED)
PermitEmptyPasswords no

# Change to yes to enable challenge-response passwords (beware issues with
# some PAM modules and threads)
ChallengeResponseAuthentication no

# Change to no to disable tunnelled clear text passwords
#PasswordAuthentication yes

# Kerberos options
#KerberosAuthentication no
#KerberosGetAFSToken no
#KerberosOrLocalPasswd yes
#KerberosTicketCleanup yes

# GSSAPI options
#GSSAPIAuthentication no
#GSSAPICleanupCredentials yes

X11Forwarding yes
X11DisplayOffset 10
PrintMotd no
PrintLastLog yes
TCPKeepAlive yes
#UseLogin no

#MaxStartups 10:30:60
#Banner /etc/issue.net

# Allow client to pass locale environment variables
AcceptEnv LANG LC_*

Subsystem sftp /usr/lib/openssh/sftp-server

# Set this to 'yes' to enable PAM authentication, account processing,
# and session processing. If this is enabled, PAM authentication will
# be allowed through the ChallengeResponseAuthentication and
# PasswordAuthentication.  Depending on your PAM configuration,
# PAM authentication via ChallengeResponseAuthentication may bypass
# the setting of "PermitRootLogin without-password".
# If you just want the PAM account and session checks to run without
# PAM authentication, then enable this but set PasswordAuthentication
# and ChallengeResponseAuthentication to 'no'.
UsePAM yes
DenyUsers

Hope it's help anyone

Regards

Franck

Le 19/10/2016 08:51, "> BOTZ Franck (Administrateur Systèmes et Réseaux) 
- DDT 67/SIDSIC/Pôle Infra (par Internet, dépôt 
x2go-user-bounces at lists.x2go.org)" a écrit :
> Hi !
>
> So, there is my configuration :
>
> Terminal
> Hardware : HP t620
> HP Thinpro (ubuntu 14.04 base)
> x2goclient 4.0.5.3
>
> Broker
> Ubuntu server 16.04 64 LTS
> python-x2gobroker           0.0.3.1-0~934~ubuntu16.04.1 all          
> X2Go Session Broker (Python modules)
> x2gobroker                          0.0.3.1-0~934~ubuntu16.04.1 
> all          X2Go Session Broker (executable)
> x2gobroker-loadchecker   0.0.3.1-0~934~ubuntu16.04.1 all X2Go Session 
> Broker (load checker service)
> x2gobroker-ssh                   0.0.3.1-0~934~ubuntu16.04.1 
> amd64        X2Go Session Broker (SSH broker)
>
> Server :
> Ubuntu Desktop 16.04 64 LTS
> libx2go-log-perl 4.1.0.0-0~1359~ubuntu16.04.1 all          Perl 
> X2Go::Log package
> libx2go-server-db-per 4.1.0.0-0~1359~ubuntu16.04.1 amd64 Perl 
> X2Go::Server:DB package
> libx2go-server-perl 4.1.0.0-0~1359~ubuntu16.04.1 all          Perl 
> X2Go::Server package
> x2goagent 2:3.5.0.33-0~687~ubuntu16.04.1 all          X2Go agent
> x2gobroker-agent 0.0.3.1-0~934~ubuntu16.04.1 amd64        X2Go Session 
> Broker (remote agent)
> x2goclient 4.0.5.1-0~1103~ubuntu12.04.1 amd64        X2Go Client 
> application (Qt4)
> x2goserver 4.1.0.0-0~1359~ubuntu16.04.1 amd64        X2Go server 
> daemon scripts
> x2goserver-common 4.1.0.0-0~1359~ubuntu16.04.1 amd64        X2Go 
> Server (common files)
> x2goserver-extensions 4.1.0.0-0~1359~ubuntu16.04.1 all X2Go Server 
> (extension support)
> x2goserver-fmbindings 4.1.0.0-0~1359~ubuntu16.04.1 all X2Go Server 
> (file manager bindings)
> x2goserver-printing 4.1.0.0-0~1359~ubuntu16.04.1 all          X2Go 
> server (printing support)
> x2goserver-xsession                 4.1.0.0-0~1359~ubuntu16.04.1
>
> I can connect from my t620 to the server trough the broker. I can 
> resum/suspend a session. The system is functionnal.
>
> My next step is sharing a folder on the t620 (the folder used to mount 
> a mass storage /tmp/tmpfs/media and access to it from the session open 
> on the server.
>
> On the broker, my x2gobroker-sessionprofiles.conf :
> [DEFAULT]
> defsndport=true
> useiconv=false
> iconvfrom=UTF-8
> #height=600
> export=
> quality=9
> #fullscreen=true
> #layout=
> #model=
> useexports=true
> #width=800
> speed=2
> soundsystem=pulse
> print=false
> sndport=4713
> xinerama=true
> variant=
> usekbd=true
> fstunnel=true
> applications=
> multidisp=false
> sshproxyport=22
> sound=true
> rootless=true
> iconvto=UTF-8
> soundtunnel=true
> dpi=96
> sshport=22
> setdpi=0
> pack=16m-jpeg
> directrdp=false
> user=
>
> [xfce]
> host=x2go-server-01 (10.0.0.1)
> name=XFCE
> command=XFCE
> type=auto
> fullscreen=true
> xinerama=false
> export="/tmp/tmpfs/media:1"
> broker-session-autologin=false
> usebrokerpass=true
>
> As you can see, in the xfce section, I export the "/tmp/tmpfs/media:1" 
> directory.
>
> On the t620 my mass storage is mounted on 
> /tmp/tmpfs/media/SomeUsbStick and I access it with the user who launch 
> the x2goclient.
>
> When the session openned I see on the server :
>   * the time to open session is longer with the export directive
>   * the media directory appears is home directory
>   * the media contained disk/_tmp_tmpfs_media directory
>   * When I list _tmp_tmpfs_media i have "permission denied"
>   * the mount command let me see (but brievely) a line like 
> user at 127.0.0.1 ...
>   * the trash disappear
>
> So what can I do to access to my USB mass storage stick ?
>
> Sincerly
>
> Franck
> _______________________________________________
> x2go-user mailing list
> x2go-user at lists.x2go.org
> http://lists.x2go.org/listinfo/x2go-user
>

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.x2go.org/pipermail/x2go-user/attachments/20161129/97abb4f5/attachment.html>

More information about the x2go-user mailing list