On 2011-07-18 17:40, Reinhard Tartler wrote:
Then we should also make sure, no one can su to the x2gouser, shouldn't we? Or at least make sure that x2gouser cannot change permissions on that file? How that? Something like this should do it:
-r-sr-sr-x 1 x2gouser x2gousers 5388 2011-07-18 00:12 /usr/bin/x2gosqlitewrapper* -rwxr-xr-x 1 root root 10094 2011-07-18 00:02 /usr/lib/x2go/x2gosqlitewrapper.pl*
Hmm, but can't the x2gouser chmod /usr/bin/x2gosqlitewrapper? Ok, we should really consult arw who already went through this in detail.... :/
Morty
-- Dipl.-Ing. Moritz 'Morty' Struebe (Wissenschaftlicher Mitarbeiter) Lehrstuhl für Informatik 4 (Verteilte Systeme und Betriebssysteme) Friedrich-Alexander-Universität Erlangen-Nürnberg Martensstr. 1 91058 Erlangen
Tel : +49 9131 85-25419 Fax : +49 9131 85-28732 eMail : struebe@informatik.uni-erlangen.de WWW : http://www4.informatik.uni-erlangen.de/~morty