Hi,
we think about use the x2gothinclient for our unix-clients. On all clients we've the same standarduser and settings.
Is it possible to use the server from all clients with the same user without resume or overtook exists sessions?
Bye
Gregor
Hi
On Mo 18 Aug 2014 10:58:56 CEST, Gregor Burck wrote:
Hi,
we think about use the x2gothinclient for our unix-clients. On all clients we've the same standarduser and settings.
Is it possible to use the server from all clients with the same user
without resume or overtook exists sessions?
as long as you have different user accounts on the server, everything
should be fine. The usernames on the client side are not taken into
account anywhere inside the X2Go (server-side) session.
DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby fon: +49 (1520) 1976 148
GnuPG Key ID 0x25771B31 mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de
freeBusy: https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xf...
No, it is no security problem, on the desktops/server nobody can do anything. The authentification is localized in the application.
I want, that all sessions 've te same settings and desktop view.
In the moment I test a setup with a skeleton home, and pam_mkhomedir. After session the home should delete.
In this case I work with one account for each thinclient on the x2goserver.
Yes, it would be better to use for each user a account and I work on a AD with samba4, but in this case I've not the whole authority to decide,...
So, anyone know, how delete the home when the user log out?
Bye
Gregor
Hi Gregor,
On Mo 18 Aug 2014 20:39:15 CEST, Gregor Burck wrote:
No, it is no security problem, on the desktops/server nobody can do anything. The authentification is localized in the application.
yes, it is a security issue.
Some staff person A will be able to watch what staff person B is
doing. Even worse, staff person A can interfere with staff person B's
session. This can also happen unnoted by staff user B in times that
staff user B's session is suspended. This setup will be highly
compromisable from internal.
For your remove home on logout problem, you maybe could look at
pam_guest (it is in Ubuntu, not sure about other distros).
DAS-NETZWERKTEAM mike gabriel, herweg 7, 24357 fleckeby fon: +49 (1520) 1976 148
GnuPG Key ID 0x25771B31 mail: mike.gabriel@das-netzwerkteam.de, http://das-netzwerkteam.de
freeBusy: https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xf...