Code: Select all
touch /etc/default/localeCode: Select all
#!/bin/bash
[ "`whoami`" != "root" ] && exec gsu ${0}
insserv -r slim
cp -fr /etc/inittab-auto /etc/inittab
Code: Select all
#!/bin/bash
[ "`whoami`" != "root" ] && exec gsu ${0}
insserv slim
cp -fr /etc/inittab-noauto /etc/inittab
Hi Toni, I haven't checked Synaptic yet, but I think the PATH for xdm sessions should be set in /etc/X11/xdm/xdm-configsaintless wrote:Hi, William.
I need your help on this one. I remember you wrote you have some experience with XDM in the past.
XDM changes the PATH when is active and do not allow the system to read /etc/profile export lines. Not only for user but also for root.
I thought this is the only problem and adding the export lines from /etc/profile to /etc/environment will fix it. It did but it gives also secure bin paths for user account which is not right.
Unfortunately this is not the only problem. When XDM is active Synaptic does not work anymore with sudo.
Code: Select all
DisplayManager.willing: su nobody -s /bin/sh -c /etc/X11/xdm/XwillingCode: Select all
DisplayManager*userPath: /opt/bin:/usr/local/bin:/usr/bin:/bin:/usr/local/games:/usr/games
DisplayManager*systemPath: /opt/bin:/usr/local/bin:/usr/bin:/bin:/usr/local/games:/usr/games:/usr/local/sbin:/usr/sbin:/sbin
Code: Select all
DisplayManager.authDir: /var/lib/xdmCode: Select all
DisplayManager*userPath: /opt/bin:/usr/local/bin:/usr/bin:/bin:/usr/local/games:/usr/games:/usr/bin/x11
DisplayManager*systemPath: /opt/bin:/usr/local/bin:/usr/bin:/usr/bin/X11:/bin:/usr/local/games:/usr/games:/usr/local/sbin:/usr/sbin:/sbin"http://unix.stackexchange.com/questions ... forwardingFirst of all, edit /etc/sudoers (which one should always do using the command visudo as it validates the configuration before saving it) and allow the environment variables DISPLAY and XAUTHORITY to be forwarded when using sudo, by adding the following line:The second step is to set and export the environment variable XAUTHORITY. The simplest option is to add the following line to your ~/.bashrc or add it to /etc/bash.bashrc.local, the latter being for all users on your host:Code: Select all
Defaults env_keep += "DISPLAY XAUTHORITY"Code: Select all
[ -n "$DISPLAY" -a -e "$HOME/.Xauthority" ] && export XAUTHORITY="$HOME/.Xauthority"
Code: Select all
puppy@debian:~$ export DISPLAY
puppy@debian:~$ export XAUTHORITY=".Xauthority"
puppy@debian:~$ sudo synapticSo the following seems to work:9.4.12 Getting root in X
If a GUI program needs to be run with root privilege, use the following procedures to display program output on a user's X server. Never attempt to start an X server directly from the root account in order to avoid possible security risks.
Start the X server as a normal user and open an xterm console. Then:
$ XAUTHORITY=$HOME/.Xauthority
$ export XAUTHORITY
$ su root
Password:*****
# printtool &
When using this trick to su to a non-root user, make sure ~/.Xauthority is group readable by this non-root user.
To automate this command sequence, create a file ~/.xsession from the user's account, containing the following lines:
# This makes X work when I su to the root account.
if [ -z "$XAUTHORITY" ]; then
XAUTHORITY=$HOME/.Xauthority
export XAUTHORITY
fi
unset XSTARTUP
# If a particular window/session manager is desired, uncomment
# the following and edit it to fit your needs.
#XSTARTUP=/usr/bin/blackbox
# This starts x-window/session-manager program
if [ -z "$XSTARTUP" ]; then
if [ -x /usr/bin/x-session-manager ]; then
XSTARTUP=x-session-manager
elif [ -x /usr/bin/x-window-manager ]; then
XSTARTUP=x-window-manager
elif [ -x /usr/bin/x-terminal-emulator ]; then
XSTARTUP=x-terminal-emulator
fi
fi
# execute auto selected X window/session manager
exec $XSTARTUP
Then run su (not su -) in an xterm window of the user. Now GUI programs started from this xterm can display output on this user's X window while running with root privilege. This trick works as long as the default /etc/X11/Xsession is executed. If a user set up his customization using ~/.xinitrc or ~/.xsession, the above mentioned environment variable XAUTHORITY needs to be set similarly in those scripts.
Alternatively, sudo can be used to automate the command sequence:
$ sudo xterm
... or
$ sudo -H -s
Here /root/.bashrc should contain:
if [ $SUDO_USER ]; then
sudo -H -u $SUDO_USER xauth extract - $DISPLAY | xauth merge -
fi
This works fine even with the home directory of the user on an NFS mount, because root does not read the .Xauthority file.
There are also several specialized packages for this purpose: kdesu, gksu, gksudo, gnome-sudo, and xsu. Some other methods can be used to achieve similar results: creating a symlink from /root/.Xauthority to the user's corresponding one; use of the script sux; or putting "xauth merge ~USER_RUNNING_X/.Xauthority" in the root initialization script.
Code: Select all
if [ $SUDO_USER ]; then
sudo -H -u $SUDO_USER xauth extract - $DISPLAY | xauth merge -
fiCode: Select all
if [ -z "$XAUTHORITY" ]; then
XAUTHORITY=$HOME/.Xauthority
export XAUTHORITY
fiThank you, William!mcewanw wrote:Further info in Section 9.4.12 onwards of:
http://qref.sourceforge.net/Debian/refe ... ne.en.html
THE ABOVE LINK LOOKS PARTICULARLY USEFUL. Provides an alternative trick to run sudo gui commands from normal user login:
I see nothing strange since Debian Live Standard CD also doesn't need to use tricks like that. It has active user account and after installing X you get straight to X from login prompt. After sudo apt-get install synaptic all it needs is to type sudo synaptic and it starts. Nothing from your post above is needed.I don't understand, Toni, how you were able to use su as a normal user and then run synaptics without this trick.
The script which starts Synaptic from menu is /opt/bin/synaptic-start:EDIT: works using sudo from user's xterm anyway, but I seem to have missed something cos didn't work from JWM menu and I'm going out so can't test further just now.
Code: Select all
#!/bin/bash
if [ "`whoami`" != "root" ]; then
xterm -e sudo synaptic
exit 0
fi
synapticThank you, Terry!# Trying to write a USB installer for DebDog. Looks like it`s going to be ultra simple.
# Toni; Fixed I believe. Odd that only the e3 menu file caused it.
We can use folder only if DebianDog boots with porteus-boot-initrd. It will be available boot option in the beta iso version.sunburnt wrote:# Toni & Fred; Do we have a way to use a dir. for the live-rw.? How about a partition.?
I also think SWAP partition on flash drive is not needed.# Thinking of a USB setup like this:
| Windows FAT partition | Boot partition 1-2GB | Extra O.S. partitions 1-2GB | Swap |
Code: Select all
Part Type F/R Boot Sizes Drv.Label
=====================================================
sda1 ext3 fix boot 6.320-GiB 6786383872
sda2 swap fix 1.953-GiB 2097152000
sda3 ext3 fix 103.5-GiB 111148007424
sdb1 vfat rem boot 7.216-GiB 7747895808 Red-8gbYes, I knew that was the script. I'm a bit confused about what the problem really is, but it works, if I also change the /opt/bin/synaptic-start script to:saintless wrote: The script which starts Synaptic from menu is /opt/bin/synaptic-start:It works for user when autologin is active and with LightDM and Slim without changing anything.Code: Select all
#!/bin/bash if [ "`whoami`" != "root" ]; then xterm -e sudo synaptic exit 0 fi synaptic
I guess the changes you posted make the user account to run direct the synaptic line in the script without sudo? Need to test this first to confirm.
Toni
Code: Select all
#!/bin/bash
if [ "`whoami`" != "root" ]; then
if [ -z "$XAUTHORITY" ]; then
XAUTHORITY=$HOME/.Xauthority
export XAUTHORITY
fi
xterm -e sudo synaptic
exit 0
fi
synapticI'm actually using DebianDog with Porteus-boot-initrd (after Toni explained to me how to set up that method) so that I can use dir for persistence. I really really like that method because I can manually edit the persistence directory anytime and the changes reflect that editing thereafter. So I can quickly modify and whiteout files and so on and then simply delete the changes and get back to where I was. It's great!saintless wrote:We can use folder only if DebianDog boots with porteus-boot-initrdsunburnt wrote:# Toni & Fred; Do we have a way to use a dir. for the live-rw.?...
Yet that link I gave earlier includes the quote:saintless wrote: The strange thing for me is XDM is the only Display manager that needs this operations to make Synaptic work.
LightDM and Slim does not need this to make Synaptic work for user.
And root can't access user's X server without Xauthority. Do these other display managers you mention not use Xauthority method perhaps? I imagine kdm and gdm would?9.4.12 Getting root in X
If a GUI program needs to be run with root privilege, use the following procedures to display program output on a user's X server
Hi, Terry.sunburnt wrote:So I assume it`s a bit of code in Porteus initrd that does the alternate live-rw setup.
# Q... Will DebDog boot with Porteus initrd with Wheezy kernel.? Is there a Porteus kernel.?
I don`t know differences, but if Fred put up lots of effort, then the initrd has some advantages.
# Could make 2 partitions, 1 for DebDog and 1 for live-rw. But both in 1 has advantages.
Thank you, Terry!# Here`s "drive-info", it`s for the USB installer.
# Please give a test try with USBs in & out and let me know...
Code: Select all
root@debian:~# drive-info
Part Type F/R Sizes Drv.Label
=================================================
/opt/bin/drive-info: line 18: disktype: command not found
sda1 fix
/opt/bin/drive-info: line 18: disktype: command not found
sdb1 rem INTENSO
root@debian:~# We can use this code for synaptic till we find something better then.mcewanw wrote:So it seems the XAUTHORITY env variable wasn't being exported to that shell for some reason......Code: Select all
#!/bin/bash if [ "`whoami`" != "root" ]; then if [ -z "$XAUTHORITY" ]; then XAUTHORITY=$HOME/.Xauthority export XAUTHORITY fi xterm -e sudo synaptic exit 0 fi synaptic
Maybe, but I doubt someone will ever install KDM or GDM on DebinaDog. It is better to use official debian since the small size is not possible with kdm and gdm.And root can't access user's X server without Xauthority. Do these other display managers you mention not use Xauthority method perhaps? I imagine kdm and gdm would?9.4.12 Getting root in X If a GUI program needs to be run with root privilege, use the following procedures to display program output on a user's X server
William,mcewanw wrote:Toni, SLiM and so on do use xauth but must export XAUTHORITY info whereas have to do that manually for xdm. That's what I think must happen anyway. The following link seems to suggest how that is done and also for LightDM, gdm and kdm:
http://blog.fox.geek.nz/
I still don't understand how you were able to use su (rather than sudo) under xdm login with programs like synaptic. Didn't seem to work out of the box for me and also because needed the Xauthority exported.
Sorry, I misunderstood a remark you made sometime earlier. I thought you were able to login via xdm to user puppy and then use su followed by calling up synaptic. That shouldn't work without Xauthority I think, but it seems you were talking about when you were not using xdm, which I understand. Note that the last link I provided above (from a blog) basically explains the difference with SLiM and LightDM and so on, compared to xdm - SLiM and LightDM seem to have an inbuilt auth mechanism which manages the provision of xauth to root on using sudo (that's what I infer anyway).saintless wrote: William,
Synaptic, Gpatrted and other programs work for user without using XDM or SLIM and with Slim installed without the changes in .bachrc and startup files. It should be mirracle since it works for me only.
I never had the changes you posted in /root/.bashrc and startup files in $HOME/
SLIM and LightDM do not need to exportapaths different way. They just use /etc/profile for this like there is no login manager installed at all.
Toni
Sorry if I didn't make it clear enough, William.mcewanw wrote:Sorry, I misunderstood a remark you made sometime earlier. I thought you were able to login via xdm to user puppy and then use su followed by calling up synaptic. That shouldn't work without Xauthority I think.
Code: Select all
puppy@debian:~$ su-to-root -c synaptic
About to execute synaptic.
This command needs root privileges to be executed.
Using su...
Enter root password at prompt.
Password: