x2gothinclient - one user on server, multiple sessions - x2go-user

List overview All Threads
Download

newer

x2gothinclient - one user on server, multiple sessions

older

x2goplugin on windows

Resume from different client?

Gregor Burck

18 Aug 2014 18 Aug '14

8:58 a.m.

Hi,

we think about use the x2gothinclient for our unix-clients. On all clients we've the same standarduser and settings.

Is it possible to use the server from all clients with the same user without resume or overtook exists sessions?

Bye

Gregor

Show replies by date

Mike Gabriel

18 Aug 18 Aug

12:22 p.m.

On Mo 18 Aug 2014 10:58:56 CEST, Gregor Burck wrote:

...

Hi,

we think about use the x2gothinclient for our unix-clients. On all clients we've the same standarduser and settings.

Is it possible to use the server from all clients with the same user
without resume or overtook exists sessions?

as long as you have different user accounts on the server, everything
should be fine. The usernames on the client side are not taken into
account anywhere inside the X2Go (server-side) session.

Mike

DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby fon: +49 (1520) 1976 148

GnuPG Key ID 0x25771B31 mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de

freeBusy: https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xf...

Gregor Burck

6:39 p.m.

New subject: x2gothinclient - one user on server, multiple sessions

No, it is no security problem, on the desktops/server nobody can do anything. The authentification is localized in the application.

I want, that all sessions 've te same settings and desktop view.

In the moment I test a setup with a skeleton home, and pam_mkhomedir. After session the home should delete.

In this case I work with one account for each thinclient on the x2goserver.

Yes, it would be better to use for each user a account and I work on a AD with samba4, but in this case I've not the whole authority to decide,...

So, anyone know, how delete the home when the user log out?

Bye

Gregor

Mike Gabriel

19 Aug 19 Aug

8:29 p.m.

Hi Gregor,

On Mo 18 Aug 2014 20:39:15 CEST, Gregor Burck wrote:

...

No, it is no security problem, on the desktops/server nobody can do anything. The authentification is localized in the application.

yes, it is a security issue.

Some staff person A will be able to watch what staff person B is
doing. Even worse, staff person A can interfere with staff person B's
session. This can also happen unnoted by staff user B in times that
staff user B's session is suspended. This setup will be highly
compromisable from internal.

For your remove home on logout problem, you maybe could look at
pam_guest (it is in Ubuntu, not sure about other distros).

Greets, Mike

DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby fon: +49 (1520) 1976 148

GnuPG Key ID 0x25771B31 mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de

freeBusy: https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xf...

3965

Age (days ago)

3966

Last active (days ago)

x2go-user@lists.x2go.org

3 comments

2 participants

tags (0)

participants (2)

Gregor Burck
Mike Gabriel