-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1
Am 22.10.2014 um 12:46 schrieb Bernhard J. Mayr:
Is there a chance to restrict access to x2go server to only published applications sessions in the way that a user can only establish x2go "published applications" sessions but no desktop session?
The safest way (as in actually denying access, rather than just hiding it) is to use unix file system permissions and group memberships. Make sure your users are in a certain group, make sure this group has the rights to execute the published applications, but remove the right from the desktop session starter executables.
BAUR-ITCS UG (haftungsbeschränkt) Geschäftsführer: Stefan Baur Eichenäckerweg 10, 89081 Ulm | Registergericht Ulm, HRB 724364 Fon/Fax 0731 40 34 66-36/-35 | USt-IdNr.: DE268653243 -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.22 (MingW32)
iQEcBAEBAgAGBQJUR446AAoJEG7d9BjNvlEZIssH/2xHlOayYpOP6/R7ef9XJmhd lJhgvlaLmVWOfJBwir1F13uNYBdW1/zReD2Za7gUpy33VZ+TYhI+N+aKkmmqhNKA clvj+LDuulpojWUsn1nbjrYYiYaxsSJckyq2y7yMz0VDqDY9dr0DNDtjO4DGUlwH nScYsdBBcv2rH2zYG9XIakwVegxUg6b1PGgo10aDxk1IRB2QHBHYJ4/tmu0OIbnZ PlgcwM4uXEreTVdXbSYTtGd/I44PB4D7F5wYN1l89aA+ben9DFEDVFDKmrcA69Ph MZ2LjlOsHHNrDWAiFm2IDUiHXx4I8zquPRbFt+R1oCtXLswFGEzsYugiCmsVjZE= =M9IF -----END PGP SIGNATURE-----