[X2go-dev] concept for X2go session lock-down to kiosk-mode (was Re: X2go is insecure)
Mike Gabriel
mike.gabriel at das-netzwerkteam.de
Wed Mar 30 20:22:44 CEST 2011
Hi Dick,
On Mi 30 Mär 2011 18:46:49 CEST Dick Kniep wrote:
> We have developed the wrapper that does exactly what I describe
> here. Currently it is lacking a screen where an authorized user can
> change the authorization db, but that will come on short notice.
>
> I hope it is a little clearer now what the problem is and how it can
> be solved.
What I have been thinking the last day is that it might be much more
generic and by far more effective to use the apparmor tool for this
kind of lock-down. However, I have never played with apparmor, only in
cases when the rules package maintainers had included in their
packages were too strict...
Greets,
Mike
--
DAS-NETZWERKTEAM
mike gabriel, dorfstr. 27, 24245 barmissen
fon: +49 (4302) 281418, fax: +49 (4302) 281419
GnuPG Key ID 0xB588399B
mail: mike.gabriel at das-netzwerkteam.de, http://das-netzwerkteam.de
freeBusy:
https://mail.das-netzwerkteam.de/freebusy/m.gabriel%40das-netzwerkteam.de.xfb
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 490 bytes
Desc: Digitale PGP-Unterschrift
URL: <http://lists.x2go.org/pipermail/x2go-dev/attachments/20110330/9aa32aeb/attachment.pgp>
More information about the x2go-dev
mailing list