Am Samstag, den 20.03.2010, 08:53 -0400 schrieb Marty Jack:
> The name of the socket is
>
> socket_path = g_strdup_printf("/tmp/.lxterminal-socket%s-%s",
> gdk_get_display(), g_get_user_name());
>
> so it contains the display and user name. Should be easily moved to a
> subdirectory but we would have to add code to create the subdirectory
> first. I have sockets for geany and menu-cached and pulse and Xorg in
> there on my system, how is it that they work under SELinux and that
> one doesn't.
You are right, I have no idea what the difference should be:
$ ls -Z /tmp/.lxterminal-socket\:0.0-chris
srwxrwxr-x. chris chris unconfined_u:object_r:user_tmp_t:s0
/tmp/.lxterminal-socket:0.0-chris
$ ls -Z /tmp/geany_socket.56e2927d
srw-------. chris chris unconfined_u:object_r:user_tmp_t:s0
/tmp/geany_socket.56e2927d
As you can see both contexts are the same. I start to doubt it's an
SELinux issue because sealert should catch it and notify the user about
the denial. I can run lxterminal with enforcing SELinux, at least on F12
(didn't try F13 alpha).
Regards,
Christoph
------------------------------------------------------------------------------
Download Intel® Parallel Studio Eval
Try the new software tools for yourself. Speed compiling, find bugs
proactively, and fine-tune applications for parallel performance.
See why Intel Parallel Studio got high marks during beta.
http://p.sf.net/sfu/intel-sw-dev
_______________________________________________
Lxde-list mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/lxde-list
